General
-
Target
0911995cf1ba233e13a4958846f9a1c0_JaffaCakes118
-
Size
178KB
-
Sample
240620-x38pwatela
-
MD5
0911995cf1ba233e13a4958846f9a1c0
-
SHA1
055724f98727a5332bf1e6a2499a896a9e74ca2c
-
SHA256
fd4fddbfca5fd959b445e1b0aa0f9b8e4364a815e12c084abfc46307925d3777
-
SHA512
e344e0cafeecb6e44a407f34c7329ba739ecd62e90520b1802d2c7de2e65a1b5c11fc21547bb16043f171076994d1fa53566e753e31f49098d4f1a9fdc6e07d1
-
SSDEEP
3072:KWqiyhc/IcXbJSGOuQwwixlxTJ4Y3R6iXcK0ImNZJ2iECIfeJ0LuCMd8l5pO/YP:whcxbQDbw/j4lImNZJ2TCQ6+uC15pOM
Static task
static1
Behavioral task
behavioral1
Sample
0911995cf1ba233e13a4958846f9a1c0_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
0911995cf1ba233e13a4958846f9a1c0_JaffaCakes118.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
0911995cf1ba233e13a4958846f9a1c0_JaffaCakes118
-
Size
178KB
-
MD5
0911995cf1ba233e13a4958846f9a1c0
-
SHA1
055724f98727a5332bf1e6a2499a896a9e74ca2c
-
SHA256
fd4fddbfca5fd959b445e1b0aa0f9b8e4364a815e12c084abfc46307925d3777
-
SHA512
e344e0cafeecb6e44a407f34c7329ba739ecd62e90520b1802d2c7de2e65a1b5c11fc21547bb16043f171076994d1fa53566e753e31f49098d4f1a9fdc6e07d1
-
SSDEEP
3072:KWqiyhc/IcXbJSGOuQwwixlxTJ4Y3R6iXcK0ImNZJ2iECIfeJ0LuCMd8l5pO/YP:whcxbQDbw/j4lImNZJ2TCQ6+uC15pOM
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Executes dropped EXE
-
Drops file in System32 directory
-