General

  • Target

    0af4f7a062b62a96b19476e25abfde7b_JaffaCakes118

  • Size

    154KB

  • Sample

    240621-mvzrwswgje

  • MD5

    0af4f7a062b62a96b19476e25abfde7b

  • SHA1

    2a4f7f3e4415fc01be319162b443942005552cd7

  • SHA256

    4cff21634ce4b4180f38736ca74f718af966ed6375c5474247cb87581afc89a8

  • SHA512

    32b7bb939e7706a05a5e46e9ef01f59ba0b05c80c612c65cf9874c18543c92ecd410ee081e9a5c7db753dd15513365f2893eff28eae2a88261f68db92c02344a

  • SSDEEP

    3072:CvT84Gq+yy1/BtrthPvRhz2zgHi66GW6fhZGMNAjdXcwnBH0M58:WXHyV/p15AEzRW67GImlUMK

Score
10/10

Malware Config

Targets

    • Target

      0af4f7a062b62a96b19476e25abfde7b_JaffaCakes118

    • Size

      154KB

    • MD5

      0af4f7a062b62a96b19476e25abfde7b

    • SHA1

      2a4f7f3e4415fc01be319162b443942005552cd7

    • SHA256

      4cff21634ce4b4180f38736ca74f718af966ed6375c5474247cb87581afc89a8

    • SHA512

      32b7bb939e7706a05a5e46e9ef01f59ba0b05c80c612c65cf9874c18543c92ecd410ee081e9a5c7db753dd15513365f2893eff28eae2a88261f68db92c02344a

    • SSDEEP

      3072:CvT84Gq+yy1/BtrthPvRhz2zgHi66GW6fhZGMNAjdXcwnBH0M58:WXHyV/p15AEzRW67GImlUMK

    Score
    10/10
    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

    • ModiLoader Second Stage

    • Deletes itself

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks