General
-
Target
063a93e89748df2b0ecd06db45d872ad_JaffaCakes118
-
Size
614KB
-
Sample
240620-p9x8qashmr
-
MD5
063a93e89748df2b0ecd06db45d872ad
-
SHA1
c4af0bb94e9b0e2aeaf06e2f6f5c94a6b4b2fb3d
-
SHA256
b2a70b166799b0718c025313c7b493d7848fc389610912b8f6d5c07d5cdb59c7
-
SHA512
d07d596001243f22b9002ef0a389c71b3e82d4112374ef02afd0332f5e4a78f8b67c86a8b062c79e5b8f935d552e4de6740d06c6074bd5d03de2e9e6d66d43d9
-
SSDEEP
12288:dQgTx1RlXTQMHLo1PdfguIFNbKjF3Z4mxxFpgAuCU0Fim9OFG:1t1RxQMHLlu6NujQmXFtuT0FWI
Static task
static1
Behavioral task
behavioral1
Sample
063a93e89748df2b0ecd06db45d872ad_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
063a93e89748df2b0ecd06db45d872ad_JaffaCakes118.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
063a93e89748df2b0ecd06db45d872ad_JaffaCakes118
-
Size
614KB
-
MD5
063a93e89748df2b0ecd06db45d872ad
-
SHA1
c4af0bb94e9b0e2aeaf06e2f6f5c94a6b4b2fb3d
-
SHA256
b2a70b166799b0718c025313c7b493d7848fc389610912b8f6d5c07d5cdb59c7
-
SHA512
d07d596001243f22b9002ef0a389c71b3e82d4112374ef02afd0332f5e4a78f8b67c86a8b062c79e5b8f935d552e4de6740d06c6074bd5d03de2e9e6d66d43d9
-
SSDEEP
12288:dQgTx1RlXTQMHLo1PdfguIFNbKjF3Z4mxxFpgAuCU0Fim9OFG:1t1RxQMHLlu6NujQmXFtuT0FWI
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-