General
-
Target
0a97863227051136a4fd6b609e0fe44d_JaffaCakes118
-
Size
375KB
-
Sample
240621-kt8masxeln
-
MD5
0a97863227051136a4fd6b609e0fe44d
-
SHA1
e0e3bdae23e35ed037f9c305780e9fb1afe45bd1
-
SHA256
33549aa045f5f954b1c36df46fc7af94d57207d699c32c0ad0b545b080a4be4e
-
SHA512
615eb48bf3dc542206683277fe30b616eb0209391dccfeb56edec16b38dbf7dac788ad4f730c7b48442011cbfcf8c3f9a0ae3532180cd3e8e7951d7efb033e59
-
SSDEEP
6144:rJPfYbStMsOqPN7ZXITFUvTXQU6KOJIL64AEdUjsN/mCo3fwnKb9T8NOC+lc:1YStMsOqPNaTF0h6KGO64KjbCovwn4Fs
Behavioral task
behavioral1
Sample
0a97863227051136a4fd6b609e0fe44d_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
0a97863227051136a4fd6b609e0fe44d_JaffaCakes118.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
0a97863227051136a4fd6b609e0fe44d_JaffaCakes118
-
Size
375KB
-
MD5
0a97863227051136a4fd6b609e0fe44d
-
SHA1
e0e3bdae23e35ed037f9c305780e9fb1afe45bd1
-
SHA256
33549aa045f5f954b1c36df46fc7af94d57207d699c32c0ad0b545b080a4be4e
-
SHA512
615eb48bf3dc542206683277fe30b616eb0209391dccfeb56edec16b38dbf7dac788ad4f730c7b48442011cbfcf8c3f9a0ae3532180cd3e8e7951d7efb033e59
-
SSDEEP
6144:rJPfYbStMsOqPN7ZXITFUvTXQU6KOJIL64AEdUjsN/mCo3fwnKb9T8NOC+lc:1YStMsOqPNaTF0h6KGO64KjbCovwn4Fs
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Drops file in System32 directory
-