General
-
Target
024625eada1df6d08761c0907aef11a7_JaffaCakes118
-
Size
172KB
-
Sample
240620-dlfg8avgmb
-
MD5
024625eada1df6d08761c0907aef11a7
-
SHA1
ad53907bb430214267beb873ccabde98d1c83e3b
-
SHA256
d6d7be881ac12354c3feb7b542d153e706f15b66ab84393e715889024b0054b6
-
SHA512
90a327d2e7dd69614b492fb48292192d032e1528497a823893eaa78c22f68c44d0b908fe8f8063b1373cbc23c55bd60124a6ebe9aa0c14cc23b9ba777bf35d50
-
SSDEEP
3072:f/wOIfEYlFpyAuf6LpvesIDR/au01CVbkLJcl2HW:X0tlFpIMIDdau012dl22
Malware Config
Targets
-
-
Target
024625eada1df6d08761c0907aef11a7_JaffaCakes118
-
Size
172KB
-
MD5
024625eada1df6d08761c0907aef11a7
-
SHA1
ad53907bb430214267beb873ccabde98d1c83e3b
-
SHA256
d6d7be881ac12354c3feb7b542d153e706f15b66ab84393e715889024b0054b6
-
SHA512
90a327d2e7dd69614b492fb48292192d032e1528497a823893eaa78c22f68c44d0b908fe8f8063b1373cbc23c55bd60124a6ebe9aa0c14cc23b9ba777bf35d50
-
SSDEEP
3072:f/wOIfEYlFpyAuf6LpvesIDR/au01CVbkLJcl2HW:X0tlFpIMIDdau012dl22
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Deletes itself
-
Executes dropped EXE
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Drops file in System32 directory
-