General
-
Target
0796aa71cd26de38bbd3d18258c4d76d_JaffaCakes118
-
Size
1.9MB
-
Sample
240620-tk815swdqb
-
MD5
0796aa71cd26de38bbd3d18258c4d76d
-
SHA1
a6365495ad84931e69c0d781441b263ba4d7745a
-
SHA256
6441ae8877ff7447e23c25eb0ead32fddf433a7d1673a2e1fee7d437b735d191
-
SHA512
2367abc4baa4315d86cf96d678d1402c268bb0d3ad2b3056a69e7ab1d156b9b88cf67c4ffa29f630f81acc23fdd38a2aeda069f912cc9856a221b21f27d24632
-
SSDEEP
49152:asq/jEdE/lMONnDFN8iMIsfWveDePVR1B9yuVXQy:aT/4dE/ltnDQxfWvNRoV
Behavioral task
behavioral1
Sample
0796aa71cd26de38bbd3d18258c4d76d_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
0796aa71cd26de38bbd3d18258c4d76d_JaffaCakes118.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
0796aa71cd26de38bbd3d18258c4d76d_JaffaCakes118
-
Size
1.9MB
-
MD5
0796aa71cd26de38bbd3d18258c4d76d
-
SHA1
a6365495ad84931e69c0d781441b263ba4d7745a
-
SHA256
6441ae8877ff7447e23c25eb0ead32fddf433a7d1673a2e1fee7d437b735d191
-
SHA512
2367abc4baa4315d86cf96d678d1402c268bb0d3ad2b3056a69e7ab1d156b9b88cf67c4ffa29f630f81acc23fdd38a2aeda069f912cc9856a221b21f27d24632
-
SSDEEP
49152:asq/jEdE/lMONnDFN8iMIsfWveDePVR1B9yuVXQy:aT/4dE/ltnDQxfWvNRoV
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Suspicious use of SetThreadContext
-