Analysis
-
max time kernel
119s -
max time network
120s -
platform
windows7_x64 -
resource
win7-20240221-en -
resource tags
arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system -
submitted
20-06-2024 00:18
Behavioral task
behavioral1
Sample
0162349ac704cb1757edc73715a83a64_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
0162349ac704cb1757edc73715a83a64_JaffaCakes118.exe
Resource
win10v2004-20240508-en
General
-
Target
0162349ac704cb1757edc73715a83a64_JaffaCakes118.exe
-
Size
73KB
-
MD5
0162349ac704cb1757edc73715a83a64
-
SHA1
52bf1744ef88fb2c1999985ab551e87ff0371a0f
-
SHA256
c9c89ce5eb015d0a364bd28de1d9b525a7d66ac4e527dfc10ade556f10c0829c
-
SHA512
7c496aa568fde957b5da622b122b88b69c7507f900d3769a5b82ae6d3e25319689608dfa769309f23ce7d7307651dd07a6400be6c74cd0aedfec017a4fc4bc16
-
SSDEEP
1536:dEY6v1qlUrMxDhkcM2wH+Omt+WWFZcjprCbyPX84IV8GE:j6tPrMxDZwH+OmttNuy7mtE
Malware Config
Signatures
-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage 1 IoCs
Processes:
resource yara_rule behavioral1/memory/2524-1-0x0000000010000000-0x0000000010019000-memory.dmp modiloader_stage2
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/2524-1-0x0000000010000000-0x0000000010019000-memory.dmpFilesize
100KB