General
-
Target
088f96da0ea3e133d21f7a688343cb55_JaffaCakes118
-
Size
768KB
-
Sample
240620-wv3yzs1ckc
-
MD5
088f96da0ea3e133d21f7a688343cb55
-
SHA1
58b72da06274150851534394c395844a2e38b7ac
-
SHA256
03691a29229b13311064b1244ed3f15236410d0e073d854bda6e568f74788cd7
-
SHA512
1ba8d584871a9a36b8dc17bb61c8d6ec17b0f534580b18351db087295fd5e0e42d4eed3d1d4e6d9dea59a588a4ab82738cf1e4ff0240f395d446ac6d1e4e5e64
-
SSDEEP
24576:tOOauuf6iLF6KhLuoTC4QGFsR9PNmIXCL:LtuSE0OB23GFUVohL
Static task
static1
Behavioral task
behavioral1
Sample
088f96da0ea3e133d21f7a688343cb55_JaffaCakes118.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
088f96da0ea3e133d21f7a688343cb55_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
088f96da0ea3e133d21f7a688343cb55_JaffaCakes118
-
Size
768KB
-
MD5
088f96da0ea3e133d21f7a688343cb55
-
SHA1
58b72da06274150851534394c395844a2e38b7ac
-
SHA256
03691a29229b13311064b1244ed3f15236410d0e073d854bda6e568f74788cd7
-
SHA512
1ba8d584871a9a36b8dc17bb61c8d6ec17b0f534580b18351db087295fd5e0e42d4eed3d1d4e6d9dea59a588a4ab82738cf1e4ff0240f395d446ac6d1e4e5e64
-
SSDEEP
24576:tOOauuf6iLF6KhLuoTC4QGFsR9PNmIXCL:LtuSE0OB23GFUVohL
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Executes dropped EXE
-
Drops file in System32 directory
-