General
-
Target
033ceaa4db6af5b98c9d3c99ac93b9a6_JaffaCakes118
-
Size
372KB
-
Sample
240620-f7686s1glf
-
MD5
033ceaa4db6af5b98c9d3c99ac93b9a6
-
SHA1
8c6bbbcab313b36ad64718bc1560790f51fb21a4
-
SHA256
c96ed78a25d34ee7be687a9ba6b2a8e990a9c2a760e67707b433aab7e6a408e8
-
SHA512
9ed1e9576ff6d873df0ba00b032264b03b01380614c0b386be477e3fb284646cf2785b66141c8434d5e52226506fc6f6c00218453872e9c1d714da50fdf56aa3
-
SSDEEP
6144:l7pwL/Q/ZFdW4euJYmCsj70XVHtfugew/+6bvd6DSyVNW0W94JEVU50:VpY/QHdW43CsjIF4gewW6rdV0NW0WGJI
Malware Config
Targets
-
-
Target
033ceaa4db6af5b98c9d3c99ac93b9a6_JaffaCakes118
-
Size
372KB
-
MD5
033ceaa4db6af5b98c9d3c99ac93b9a6
-
SHA1
8c6bbbcab313b36ad64718bc1560790f51fb21a4
-
SHA256
c96ed78a25d34ee7be687a9ba6b2a8e990a9c2a760e67707b433aab7e6a408e8
-
SHA512
9ed1e9576ff6d873df0ba00b032264b03b01380614c0b386be477e3fb284646cf2785b66141c8434d5e52226506fc6f6c00218453872e9c1d714da50fdf56aa3
-
SSDEEP
6144:l7pwL/Q/ZFdW4euJYmCsj70XVHtfugew/+6bvd6DSyVNW0W94JEVU50:VpY/QHdW43CsjIF4gewW6rdV0NW0WGJI
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-