Overview

overview

10

Static

static

10

00847a86f1...18.exe

windows7-x64

10

00847a86f1...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    00847a86f1a44be5289bb40835a2691a_JaffaCakes118

  • Size

    725KB

  • Sample

    240619-z2npes1hng

  • MD5

    00847a86f1a44be5289bb40835a2691a

  • SHA1

    2187da3685b422c84704dadec0329041c21be0d7

  • SHA256

    19406ad720fb45336138b85ee6c86fcdd27890ac3ffc814228a2bbe1d1d79d11

  • SHA512

    96bd9d87ad0f8929cf55d6d420ccfaf3a15446f83c3aec68cb50ee864bb98be95257013f7e0b531e9a6076af9d97b90adceca70703e992f523d7c6995bf3f050

  • SSDEEP

    12288:ItS5RTQ7aT7YilhjzAF4gv6tLbAfyI0xkaa+5jqJeAT9gH:4c22T7BRS46kbAfyWMjqMATCH

Score
10/10
modiloadertrojan

Malware Config

Targets

    • Target

      00847a86f1a44be5289bb40835a2691a_JaffaCakes118

    • Size

      725KB

    • MD5

      00847a86f1a44be5289bb40835a2691a

    • SHA1

      2187da3685b422c84704dadec0329041c21be0d7

    • SHA256

      19406ad720fb45336138b85ee6c86fcdd27890ac3ffc814228a2bbe1d1d79d11

    • SHA512

      96bd9d87ad0f8929cf55d6d420ccfaf3a15446f83c3aec68cb50ee864bb98be95257013f7e0b531e9a6076af9d97b90adceca70703e992f523d7c6995bf3f050

    • SSDEEP

      12288:ItS5RTQ7aT7YilhjzAF4gv6tLbAfyI0xkaa+5jqJeAT9gH:4c22T7BRS46kbAfyWMjqMATCH

    Score
    10/10
    modiloadertrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • ModiLoader Second Stage

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks