General
-
Target
0414434e685fd1f4a51667b1986bcea8_JaffaCakes118
-
Size
372KB
-
Sample
240620-je9qda1aql
-
MD5
0414434e685fd1f4a51667b1986bcea8
-
SHA1
cd2f17353c64df8910248a07f3f2673bae276887
-
SHA256
16822e6ba3370fc8112bcaf70f39956712ef6a23b4559dbd2a5cf7e13d6f252d
-
SHA512
4b8474326b6002b784616de1cf5c081fd19277f88f4773352cea525fe2c4ec8ab9c8ff990fe11d93d45f1bd7c9e568d8a64d4360d0f16cfc1b8cd953c9f2847a
-
SSDEEP
6144:67pwL/Q/ZFdW4euJYmCsj70XVHtfugew/+6bvd6DSyVNW0W94JEVU50:KpY/QHdW43CsjIF4gewW6rdV0NW0WGJI
Malware Config
Targets
-
-
Target
0414434e685fd1f4a51667b1986bcea8_JaffaCakes118
-
Size
372KB
-
MD5
0414434e685fd1f4a51667b1986bcea8
-
SHA1
cd2f17353c64df8910248a07f3f2673bae276887
-
SHA256
16822e6ba3370fc8112bcaf70f39956712ef6a23b4559dbd2a5cf7e13d6f252d
-
SHA512
4b8474326b6002b784616de1cf5c081fd19277f88f4773352cea525fe2c4ec8ab9c8ff990fe11d93d45f1bd7c9e568d8a64d4360d0f16cfc1b8cd953c9f2847a
-
SSDEEP
6144:67pwL/Q/ZFdW4euJYmCsj70XVHtfugew/+6bvd6DSyVNW0W94JEVU50:KpY/QHdW43CsjIF4gewW6rdV0NW0WGJI
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-