General
-
Target
071e0536642da7fc804d2bb6a6ac7802_JaffaCakes118
-
Size
49KB
-
Sample
240620-shmjpatekc
-
MD5
071e0536642da7fc804d2bb6a6ac7802
-
SHA1
271121a86227e9f945dcee658188f4b499da9fdd
-
SHA256
fb2d4adf2f91440c0df7b19e0d62d65237fda5775873d57ecc1cee3d49840baa
-
SHA512
e02619310c176e8025e50d6c2b467408874d03ac8558de42647815652b0b95876f20705b35d5be623ea2df18b4473ad5465311e8b850f10078f11dabdd0293ed
-
SSDEEP
768:8wwyxQouEWjSHD23fbU50aaaxwdYzsRgw8rt9pGDRiUNjALjoRkBcjzx4La4:p4jqi5axwdaPpGDhN0gRkBcjzx4z
Behavioral task
behavioral1
Sample
071e0536642da7fc804d2bb6a6ac7802_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
071e0536642da7fc804d2bb6a6ac7802_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
071e0536642da7fc804d2bb6a6ac7802_JaffaCakes118
-
Size
49KB
-
MD5
071e0536642da7fc804d2bb6a6ac7802
-
SHA1
271121a86227e9f945dcee658188f4b499da9fdd
-
SHA256
fb2d4adf2f91440c0df7b19e0d62d65237fda5775873d57ecc1cee3d49840baa
-
SHA512
e02619310c176e8025e50d6c2b467408874d03ac8558de42647815652b0b95876f20705b35d5be623ea2df18b4473ad5465311e8b850f10078f11dabdd0293ed
-
SSDEEP
768:8wwyxQouEWjSHD23fbU50aaaxwdYzsRgw8rt9pGDRiUNjALjoRkBcjzx4La4:p4jqi5axwdaPpGDhN0gRkBcjzx4z
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Suspicious use of SetThreadContext
-