General
-
Target
065fca2f5fcb23c11718920eea975b6e_JaffaCakes118
-
Size
490KB
-
Sample
240620-qmg4nazcla
-
MD5
065fca2f5fcb23c11718920eea975b6e
-
SHA1
035316348d95a5fa099abe4d56213a07c4bace73
-
SHA256
c23a98c0e16e30e2d8a290cc4b93d4bbe4d7fad26614c59b2f2e020f0a029748
-
SHA512
a88bb49323023cc02c957279c55f0e5601d37fdcbf5fbf7df62b7d57a2597d4fad38218c3ecd80c08382b83ecca3b24d78da2dd04a7b09254577ab2951f059b6
-
SSDEEP
12288:tgzlGbiXNBz0ErToF3Z4mxxn7qYvCoLM3SgUW617beQg8:tgzS+77ToQmX7qz1igCT
Static task
static1
Behavioral task
behavioral1
Sample
065fca2f5fcb23c11718920eea975b6e_JaffaCakes118.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
065fca2f5fcb23c11718920eea975b6e_JaffaCakes118.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
065fca2f5fcb23c11718920eea975b6e_JaffaCakes118
-
Size
490KB
-
MD5
065fca2f5fcb23c11718920eea975b6e
-
SHA1
035316348d95a5fa099abe4d56213a07c4bace73
-
SHA256
c23a98c0e16e30e2d8a290cc4b93d4bbe4d7fad26614c59b2f2e020f0a029748
-
SHA512
a88bb49323023cc02c957279c55f0e5601d37fdcbf5fbf7df62b7d57a2597d4fad38218c3ecd80c08382b83ecca3b24d78da2dd04a7b09254577ab2951f059b6
-
SSDEEP
12288:tgzlGbiXNBz0ErToF3Z4mxxn7qYvCoLM3SgUW617beQg8:tgzS+77ToQmX7qz1igCT
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Deletes itself
-
Executes dropped EXE
-