General

  • Target

    0b2ab24658b48f4e57c46c3eb07214b4_JaffaCakes118

  • Size

    163KB

  • Sample

    240621-nph3maxhlg

  • MD5

    0b2ab24658b48f4e57c46c3eb07214b4

  • SHA1

    ad21d9766e76da7ae6648822e51346e64b41bb41

  • SHA256

    1b393591ac9858f949df77279d8ac941661187d8065b37fa3548c96b14234c94

  • SHA512

    f3895b1c01f6285c2cf55944f302df37d8a246a3fac13981584b1182f2290a4236250e9c24d6d102c1e0be5d843295ae626b2d3ad81c84b9b4d0658c69c36196

  • SSDEEP

    3072:Hl2VHNThyw0PhPtk9fYl9NkD7jOZlL6/cdILAyrXNipp3LRrCEH+gRrCulN:Hgtyw21t8fYl9NxyMIfr03eMuYN

Score
10/10

Malware Config

Targets

    • Target

      0b2ab24658b48f4e57c46c3eb07214b4_JaffaCakes118

    • Size

      163KB

    • MD5

      0b2ab24658b48f4e57c46c3eb07214b4

    • SHA1

      ad21d9766e76da7ae6648822e51346e64b41bb41

    • SHA256

      1b393591ac9858f949df77279d8ac941661187d8065b37fa3548c96b14234c94

    • SHA512

      f3895b1c01f6285c2cf55944f302df37d8a246a3fac13981584b1182f2290a4236250e9c24d6d102c1e0be5d843295ae626b2d3ad81c84b9b4d0658c69c36196

    • SSDEEP

      3072:Hl2VHNThyw0PhPtk9fYl9NkD7jOZlL6/cdILAyrXNipp3LRrCEH+gRrCulN:Hgtyw21t8fYl9NxyMIfr03eMuYN

    Score
    10/10
    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

    • ModiLoader Second Stage

    • Deletes itself

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks