General
-
Target
0af4f7a062b62a96b19476e25abfde7b_JaffaCakes118
-
Size
154KB
-
Sample
240621-mvzrwswgje
-
MD5
0af4f7a062b62a96b19476e25abfde7b
-
SHA1
2a4f7f3e4415fc01be319162b443942005552cd7
-
SHA256
4cff21634ce4b4180f38736ca74f718af966ed6375c5474247cb87581afc89a8
-
SHA512
32b7bb939e7706a05a5e46e9ef01f59ba0b05c80c612c65cf9874c18543c92ecd410ee081e9a5c7db753dd15513365f2893eff28eae2a88261f68db92c02344a
-
SSDEEP
3072:CvT84Gq+yy1/BtrthPvRhz2zgHi66GW6fhZGMNAjdXcwnBH0M58:WXHyV/p15AEzRW67GImlUMK
Behavioral task
behavioral1
Sample
0af4f7a062b62a96b19476e25abfde7b_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
0af4f7a062b62a96b19476e25abfde7b_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
0af4f7a062b62a96b19476e25abfde7b_JaffaCakes118
-
Size
154KB
-
MD5
0af4f7a062b62a96b19476e25abfde7b
-
SHA1
2a4f7f3e4415fc01be319162b443942005552cd7
-
SHA256
4cff21634ce4b4180f38736ca74f718af966ed6375c5474247cb87581afc89a8
-
SHA512
32b7bb939e7706a05a5e46e9ef01f59ba0b05c80c612c65cf9874c18543c92ecd410ee081e9a5c7db753dd15513365f2893eff28eae2a88261f68db92c02344a
-
SSDEEP
3072:CvT84Gq+yy1/BtrthPvRhz2zgHi66GW6fhZGMNAjdXcwnBH0M58:WXHyV/p15AEzRW67GImlUMK
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Deletes itself
-
Executes dropped EXE
-