General

  • Target

    0a4d92ff7a8ee83626d0458380affc0a_JaffaCakes118

  • Size

    633KB

  • Sample

    240621-jn54js1hmd

  • MD5

    0a4d92ff7a8ee83626d0458380affc0a

  • SHA1

    c061f3dc6a5bbbd214f90681b6a13109d457c924

  • SHA256

    73452eb44d4736942397fc7a86d60da9aac46ea1be8de649fc89a9bf68cac57b

  • SHA512

    257a7c41045b8847f9e759a5c17bd4a7d818c55912d27dcf378721b31720e26effb22bab846d85fc11bf4da52cea907d185c81b4818126dc4fba4deff0966f85

  • SSDEEP

    12288:VKJ0qFkVkltRE6q1eqY5mwXoBF3Z4mxxIDqVTVOCVl:QJ0qaeDWLQmOoBQmXvVTzVl

Score
10/10

Malware Config

Targets

    • Target

      0a4d92ff7a8ee83626d0458380affc0a_JaffaCakes118

    • Size

      633KB

    • MD5

      0a4d92ff7a8ee83626d0458380affc0a

    • SHA1

      c061f3dc6a5bbbd214f90681b6a13109d457c924

    • SHA256

      73452eb44d4736942397fc7a86d60da9aac46ea1be8de649fc89a9bf68cac57b

    • SHA512

      257a7c41045b8847f9e759a5c17bd4a7d818c55912d27dcf378721b31720e26effb22bab846d85fc11bf4da52cea907d185c81b4818126dc4fba4deff0966f85

    • SSDEEP

      12288:VKJ0qFkVkltRE6q1eqY5mwXoBF3Z4mxxIDqVTVOCVl:QJ0qaeDWLQmOoBQmXvVTzVl

    Score
    10/10
    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

    • ModiLoader Second Stage

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks