General

  • Target

    0a54ca53f2a6943004547e247d0efdf2_JaffaCakes118

  • Size

    220KB

  • Sample

    240621-jrjpqawbrp

  • MD5

    0a54ca53f2a6943004547e247d0efdf2

  • SHA1

    8d4ffa13a9cd25a2f2bc9de310404d20efdc0a06

  • SHA256

    0d51ae975d01e7c4ea57c63c1fb05417bad465f71f210360296462580f3327d3

  • SHA512

    66d7279d3cb5fd26befe203a7c79a9db5785d4ba2970b294a2957698a7f656c1f650edf65914da5cc577dd9795422412e104046d4cb3f72fda8bc9c0d8403735

  • SSDEEP

    6144:D1KJymOJtwdQo0SD62o9pf52/v2zrNMtLo0w36sxgB44i:DzZUd++CpfdXNso09snH

Score
10/10

Malware Config

Targets

    • Target

      0a54ca53f2a6943004547e247d0efdf2_JaffaCakes118

    • Size

      220KB

    • MD5

      0a54ca53f2a6943004547e247d0efdf2

    • SHA1

      8d4ffa13a9cd25a2f2bc9de310404d20efdc0a06

    • SHA256

      0d51ae975d01e7c4ea57c63c1fb05417bad465f71f210360296462580f3327d3

    • SHA512

      66d7279d3cb5fd26befe203a7c79a9db5785d4ba2970b294a2957698a7f656c1f650edf65914da5cc577dd9795422412e104046d4cb3f72fda8bc9c0d8403735

    • SSDEEP

      6144:D1KJymOJtwdQo0SD62o9pf52/v2zrNMtLo0w36sxgB44i:DzZUd++CpfdXNso09snH

    Score
    10/10
    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

    • ModiLoader Second Stage

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks