General
-
Target
06157d446e8d44579d0f295b89456d09_JaffaCakes118
-
Size
131KB
-
Sample
240620-pycgwasckj
-
MD5
06157d446e8d44579d0f295b89456d09
-
SHA1
919845b383149689113400e6741a9bbceb6289da
-
SHA256
91afab2480b7b1fec1525b9a7f6999a784c3462769ee1aef4943ce4cd7bca565
-
SHA512
744c44513aa9b4ea438ac09746120d2748ef719aa6cb87e2cced48a1e6df2e7d8b373871023274468aafbdd2685650886df07921f906c8f3ee737a7267099f81
-
SSDEEP
3072:EP5Y5y0+aCSaAVpbmOVgVPHprc73Pd+CzPXpKgpY2839YkwP02mXC1c:EPgyLspbMHpr+PnXtYr9vohmS+
Static task
static1
Behavioral task
behavioral1
Sample
06157d446e8d44579d0f295b89456d09_JaffaCakes118.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
06157d446e8d44579d0f295b89456d09_JaffaCakes118.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
06157d446e8d44579d0f295b89456d09_JaffaCakes118
-
Size
131KB
-
MD5
06157d446e8d44579d0f295b89456d09
-
SHA1
919845b383149689113400e6741a9bbceb6289da
-
SHA256
91afab2480b7b1fec1525b9a7f6999a784c3462769ee1aef4943ce4cd7bca565
-
SHA512
744c44513aa9b4ea438ac09746120d2748ef719aa6cb87e2cced48a1e6df2e7d8b373871023274468aafbdd2685650886df07921f906c8f3ee737a7267099f81
-
SSDEEP
3072:EP5Y5y0+aCSaAVpbmOVgVPHprc73Pd+CzPXpKgpY2839YkwP02mXC1c:EPgyLspbMHpr+PnXtYr9vohmS+
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Deletes itself
-
Executes dropped EXE
-