General
-
Target
090bf041fbb31425823c2e199f3159b7_JaffaCakes118
-
Size
144KB
-
Sample
240620-x2jz5axfnq
-
MD5
090bf041fbb31425823c2e199f3159b7
-
SHA1
eeb5de5e7d1ae87b8646aded4d4d21f8c52b7672
-
SHA256
6dc6a809f9a9a218145caf8831f92852c57cba114ba5f3ad0ae65c3328aec76f
-
SHA512
01a0cc21573a7b3793b628f15fd17d962a5c87a8abc373ab4c53deb2255e29c7c6e85038a34e5b6fc78f5e36f28c7a4b47297942f643e46b82b26c89450caafe
-
SSDEEP
1536:mpecxq/Q3JDFtzsMggA+qW4YjznNRt2gTVjkXW9X/Z+08yxzU/N77pBFzpB:34J/ngx+c2znN3pVgQ8Ll77pntB
Behavioral task
behavioral1
Sample
090bf041fbb31425823c2e199f3159b7_JaffaCakes118.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
090bf041fbb31425823c2e199f3159b7_JaffaCakes118.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
090bf041fbb31425823c2e199f3159b7_JaffaCakes118
-
Size
144KB
-
MD5
090bf041fbb31425823c2e199f3159b7
-
SHA1
eeb5de5e7d1ae87b8646aded4d4d21f8c52b7672
-
SHA256
6dc6a809f9a9a218145caf8831f92852c57cba114ba5f3ad0ae65c3328aec76f
-
SHA512
01a0cc21573a7b3793b628f15fd17d962a5c87a8abc373ab4c53deb2255e29c7c6e85038a34e5b6fc78f5e36f28c7a4b47297942f643e46b82b26c89450caafe
-
SSDEEP
1536:mpecxq/Q3JDFtzsMggA+qW4YjznNRt2gTVjkXW9X/Z+08yxzU/N77pBFzpB:34J/ngx+c2znN3pVgQ8Ll77pntB
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Loads dropped DLL
-
Suspicious use of SetThreadContext
-