General
-
Target
065425b5996d00187823af84f8c4e092_JaffaCakes118
-
Size
458KB
-
Sample
240620-qhzg5szalb
-
MD5
065425b5996d00187823af84f8c4e092
-
SHA1
7d3842f575b85e72ae70f71f7fa69f048a614e67
-
SHA256
f09465f820c4b84fdf62ff33148b76e29d644917cfe709176182c6976916b072
-
SHA512
f17ded1d0bc04cec26043a8828e956fecd2cc4ed5b7dd31c0bfdadb4bbafb793123b279be189ba9e61c6191e26d4f489e18a892b360db904e7293e9d50b98d2a
-
SSDEEP
12288:xYebZIKmd7hOZ7xL2NhXI9TtKXTZpopHf:xYyYd7hODWxXTbo1
Static task
static1
Behavioral task
behavioral1
Sample
065425b5996d00187823af84f8c4e092_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
065425b5996d00187823af84f8c4e092_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
065425b5996d00187823af84f8c4e092_JaffaCakes118
-
Size
458KB
-
MD5
065425b5996d00187823af84f8c4e092
-
SHA1
7d3842f575b85e72ae70f71f7fa69f048a614e67
-
SHA256
f09465f820c4b84fdf62ff33148b76e29d644917cfe709176182c6976916b072
-
SHA512
f17ded1d0bc04cec26043a8828e956fecd2cc4ed5b7dd31c0bfdadb4bbafb793123b279be189ba9e61c6191e26d4f489e18a892b360db904e7293e9d50b98d2a
-
SSDEEP
12288:xYebZIKmd7hOZ7xL2NhXI9TtKXTZpopHf:xYyYd7hODWxXTbo1
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-