General
-
Target
063efb539e1ebb8e785cc3b1dd86c3b4_JaffaCakes118
-
Size
384KB
-
Sample
240620-qbgnrayeqh
-
MD5
063efb539e1ebb8e785cc3b1dd86c3b4
-
SHA1
681e3394ee8075fb8bc037f28e5362663c8143f3
-
SHA256
5e88960b72c13e732645c23208654378cc8b9ee4b0d1a4c49d9bff8a4241d2fe
-
SHA512
0f081f29cbae511533d90cf0b817ebb2dfe6ad9c98632060975144bf2a5290a8ed4c2211fadd902bd404a8438162d179f89927c411fb1d2ca782ceab9a5dc452
-
SSDEEP
6144:GVk05yZS+ev95iv/LR2aQS9hqDfEh99oSO9r6ii29Y0KKUtldsNxlD:s5yZS+ev95iXhf27Eh3iiAY5tldsxD
Behavioral task
behavioral1
Sample
063efb539e1ebb8e785cc3b1dd86c3b4_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
063efb539e1ebb8e785cc3b1dd86c3b4_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
063efb539e1ebb8e785cc3b1dd86c3b4_JaffaCakes118
-
Size
384KB
-
MD5
063efb539e1ebb8e785cc3b1dd86c3b4
-
SHA1
681e3394ee8075fb8bc037f28e5362663c8143f3
-
SHA256
5e88960b72c13e732645c23208654378cc8b9ee4b0d1a4c49d9bff8a4241d2fe
-
SHA512
0f081f29cbae511533d90cf0b817ebb2dfe6ad9c98632060975144bf2a5290a8ed4c2211fadd902bd404a8438162d179f89927c411fb1d2ca782ceab9a5dc452
-
SSDEEP
6144:GVk05yZS+ev95iv/LR2aQS9hqDfEh99oSO9r6ii29Y0KKUtldsNxlD:s5yZS+ev95iXhf27Eh3iiAY5tldsxD
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Drops file in System32 directory
-