General
-
Target
027e859fce3a4a6b77583a8f63aaaedf_JaffaCakes118
-
Size
22KB
-
Sample
240620-d9cfga1emm
-
MD5
027e859fce3a4a6b77583a8f63aaaedf
-
SHA1
f5b1782bcaebdb2a9cf59bc46f0d870871bcfb2a
-
SHA256
662652111489572f3bf547e63cf567a975db1ef6abb43e7d7832f57864ea03a8
-
SHA512
2cd9a6ba8aa31ee7cc3297b4dfb6c43c500232ab0ba97287c584f613211e25c10cd05ff7862cbe3b30bf7689d9c4f36dc318142e1d7aa3257cf6f2782c1823be
-
SSDEEP
384:hokptSvaJP8zhqbG5jzI5jgcnSsgRS3V8ohpAnLcZEwT538u:9ptSw0zGG545cc/4M+o2LcSwJv
Behavioral task
behavioral1
Sample
027e859fce3a4a6b77583a8f63aaaedf_JaffaCakes118.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
027e859fce3a4a6b77583a8f63aaaedf_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
027e859fce3a4a6b77583a8f63aaaedf_JaffaCakes118
-
Size
22KB
-
MD5
027e859fce3a4a6b77583a8f63aaaedf
-
SHA1
f5b1782bcaebdb2a9cf59bc46f0d870871bcfb2a
-
SHA256
662652111489572f3bf547e63cf567a975db1ef6abb43e7d7832f57864ea03a8
-
SHA512
2cd9a6ba8aa31ee7cc3297b4dfb6c43c500232ab0ba97287c584f613211e25c10cd05ff7862cbe3b30bf7689d9c4f36dc318142e1d7aa3257cf6f2782c1823be
-
SSDEEP
384:hokptSvaJP8zhqbG5jzI5jgcnSsgRS3V8ohpAnLcZEwT538u:9ptSw0zGG545cc/4M+o2LcSwJv
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Suspicious use of SetThreadContext
-