General

  • Target

    08d531a7f7fff50d2b03fa906ab6a225_JaffaCakes118

  • Size

    544KB

  • Sample

    240620-xjrx1ssenc

  • MD5

    08d531a7f7fff50d2b03fa906ab6a225

  • SHA1

    61fad11ae22a07183d2e535c0ce915b38bfac22f

  • SHA256

    4b4d5ff9c9a8ed6a202408872ca393c630ec364606963197a35292539322aa35

  • SHA512

    b11a4e78874f5208f6eb759f63944a3f72d0adc3f6c94da2de3db58b1555714b2b322ddd3ed46b06767086f128372ae2c67c4cb7caabb01325444a00b467a551

  • SSDEEP

    12288:JAhH7ss1wJoXK8nrl+CnfGew9G9OXKGS0gq9Eeq6R+JoHGVX04b7:JAhj1+8nTnfGe39cKGLH97q1oHGB04b

Score
10/10

Malware Config

Targets

    • Target

      08d531a7f7fff50d2b03fa906ab6a225_JaffaCakes118

    • Size

      544KB

    • MD5

      08d531a7f7fff50d2b03fa906ab6a225

    • SHA1

      61fad11ae22a07183d2e535c0ce915b38bfac22f

    • SHA256

      4b4d5ff9c9a8ed6a202408872ca393c630ec364606963197a35292539322aa35

    • SHA512

      b11a4e78874f5208f6eb759f63944a3f72d0adc3f6c94da2de3db58b1555714b2b322ddd3ed46b06767086f128372ae2c67c4cb7caabb01325444a00b467a551

    • SSDEEP

      12288:JAhH7ss1wJoXK8nrl+CnfGew9G9OXKGS0gq9Eeq6R+JoHGVX04b7:JAhj1+8nTnfGe39cKGLH97q1oHGB04b

    Score
    10/10
    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

    • ModiLoader Second Stage

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks