General

  • Target

    09417ddcf2bed2994277ea4121efa21b_JaffaCakes118

  • Size

    483KB

  • Sample

    240620-yl3b7svemc

  • MD5

    09417ddcf2bed2994277ea4121efa21b

  • SHA1

    e976b00a8b89eb99409f46fb495273e845b695ea

  • SHA256

    3de5006b273dc95f7275cf8f492a6055021410f52938c8127d76a668a6b9ff0b

  • SHA512

    8e147c81c6163db3d75b4e925ed5b82fdba19b2a6f8c6271e09fc645ee9e121fe598edf7bfc3bd95fe723f0559a9e0c09c344ac541d94ec120df8657b93cf6bf

  • SSDEEP

    12288:UyoPtSqxioEElxbEMgOdv9algIqxGV2zyick1Qgsfh04CB8OJIgOg:UyoVSq3ESg9OaeIqwHk1Qf04a9Og

Malware Config

Targets

    • Target

      09417ddcf2bed2994277ea4121efa21b_JaffaCakes118

    • Size

      483KB

    • MD5

      09417ddcf2bed2994277ea4121efa21b

    • SHA1

      e976b00a8b89eb99409f46fb495273e845b695ea

    • SHA256

      3de5006b273dc95f7275cf8f492a6055021410f52938c8127d76a668a6b9ff0b

    • SHA512

      8e147c81c6163db3d75b4e925ed5b82fdba19b2a6f8c6271e09fc645ee9e121fe598edf7bfc3bd95fe723f0559a9e0c09c344ac541d94ec120df8657b93cf6bf

    • SSDEEP

      12288:UyoPtSqxioEElxbEMgOdv9algIqxGV2zyick1Qgsfh04CB8OJIgOg:UyoVSq3ESg9OaeIqwHk1Qf04a9Og

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

    • ModiLoader Second Stage

    • Themida packer

      Detects Themida, an advanced Windows software protection system.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks