General
-
Target
0ab50c939138ce3efc6f8c48119de3aa_JaffaCakes118
-
Size
16KB
-
Sample
240621-lhafssvbmf
-
MD5
0ab50c939138ce3efc6f8c48119de3aa
-
SHA1
94a30b1b30beaac65bb71e66b5d532913cc3f546
-
SHA256
1cb3bc33cc92910a464a40f776ac4a8f93d580449c995506af55639253cf8686
-
SHA512
4aed66abfff75379900105206a3f2e377c9d8bbf3e8cf9c2c3494f957dc9df23805911deb62faf4a66971fad4f43b068b07b6342362038cf23b6104f5520012c
-
SSDEEP
192:n4CWRh0hydSDYddiPnNOOw7hHQwDfk1H1a8I6jw9jWUbklx0q3038Fq8imZDprbF:oR+yd6yiPgPSw2a8XjcjWYp808i0MS40
Behavioral task
behavioral1
Sample
0ab50c939138ce3efc6f8c48119de3aa_JaffaCakes118.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
0ab50c939138ce3efc6f8c48119de3aa_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
0ab50c939138ce3efc6f8c48119de3aa_JaffaCakes118
-
Size
16KB
-
MD5
0ab50c939138ce3efc6f8c48119de3aa
-
SHA1
94a30b1b30beaac65bb71e66b5d532913cc3f546
-
SHA256
1cb3bc33cc92910a464a40f776ac4a8f93d580449c995506af55639253cf8686
-
SHA512
4aed66abfff75379900105206a3f2e377c9d8bbf3e8cf9c2c3494f957dc9df23805911deb62faf4a66971fad4f43b068b07b6342362038cf23b6104f5520012c
-
SSDEEP
192:n4CWRh0hydSDYddiPnNOOw7hHQwDfk1H1a8I6jw9jWUbklx0q3038Fq8imZDprbF:oR+yd6yiPgPSw2a8XjcjWYp808i0MS40
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Suspicious use of SetThreadContext
-