General

  • Target

    0848d5dc5126f2408164f41c6161ef13_JaffaCakes118

  • Size

    632KB

  • Sample

    240620-v62pmazanb

  • MD5

    0848d5dc5126f2408164f41c6161ef13

  • SHA1

    cc00ee2c6516b7b6b1048769ae5666788f526a10

  • SHA256

    613bc88c22cbaac5ae9d3cb7c1b68b37ef48662201bed7ad386ad1df80250f97

  • SHA512

    ddcdcf3a72385269f6993954869dd7404d15d489b4cd5c5e940e48a2344abc5301e37a54cd83368a8beab1fc78d5e9acf90166c867328018ca57b8f381560de3

  • SSDEEP

    12288:1hwQclhOmYTB1Cffopg/u66DLIxHM4zCma65kqpkZpIXdUZyu:1qLlhm1CIvDKsy8qyZO

Malware Config

Targets

    • Target

      0848d5dc5126f2408164f41c6161ef13_JaffaCakes118

    • Size

      632KB

    • MD5

      0848d5dc5126f2408164f41c6161ef13

    • SHA1

      cc00ee2c6516b7b6b1048769ae5666788f526a10

    • SHA256

      613bc88c22cbaac5ae9d3cb7c1b68b37ef48662201bed7ad386ad1df80250f97

    • SHA512

      ddcdcf3a72385269f6993954869dd7404d15d489b4cd5c5e940e48a2344abc5301e37a54cd83368a8beab1fc78d5e9acf90166c867328018ca57b8f381560de3

    • SSDEEP

      12288:1hwQclhOmYTB1Cffopg/u66DLIxHM4zCma65kqpkZpIXdUZyu:1qLlhm1CIvDKsy8qyZO

    Score
    10/10
    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

    • ModiLoader Second Stage

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks