General
-
Target
0995f49d25d193863b2a049bf0fe147b_JaffaCakes118
-
Size
113KB
-
Sample
240620-1qspnsydrg
-
MD5
0995f49d25d193863b2a049bf0fe147b
-
SHA1
75e622a5313ae83113dea80414f3e0c1b3ef906f
-
SHA256
f84ba334ca4756281c54b604f22bfb7eda3fa2f2c098e2f880f5d7902eae685d
-
SHA512
090e3ddbd237c6ccc617efef9c14c26e541df71c01dc998855c884a6ba637f1e04c946c819f1bd4a6f28c5f707a3b4cbbed30684e565a7b0ee8c0aed1df7effc
-
SSDEEP
1536:1zPsqFtRq1DuS5zhwxeuc5jzyPgF2uwV3SNJB3upiozkWk0wQZ9dAT+P/Bcx12L:1LFt8VhCUF2uwV3SNJ4piJ0wi9dq+XF
Static task
static1
Behavioral task
behavioral1
Sample
0995f49d25d193863b2a049bf0fe147b_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
0995f49d25d193863b2a049bf0fe147b_JaffaCakes118.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
0995f49d25d193863b2a049bf0fe147b_JaffaCakes118
-
Size
113KB
-
MD5
0995f49d25d193863b2a049bf0fe147b
-
SHA1
75e622a5313ae83113dea80414f3e0c1b3ef906f
-
SHA256
f84ba334ca4756281c54b604f22bfb7eda3fa2f2c098e2f880f5d7902eae685d
-
SHA512
090e3ddbd237c6ccc617efef9c14c26e541df71c01dc998855c884a6ba637f1e04c946c819f1bd4a6f28c5f707a3b4cbbed30684e565a7b0ee8c0aed1df7effc
-
SSDEEP
1536:1zPsqFtRq1DuS5zhwxeuc5jzyPgF2uwV3SNJB3upiozkWk0wQZ9dAT+P/Bcx12L:1LFt8VhCUF2uwV3SNJ4piJ0wi9dq+XF
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Suspicious use of SetThreadContext
-