General
-
Target
0b2ab24658b48f4e57c46c3eb07214b4_JaffaCakes118
-
Size
163KB
-
Sample
240621-nph3maxhlg
-
MD5
0b2ab24658b48f4e57c46c3eb07214b4
-
SHA1
ad21d9766e76da7ae6648822e51346e64b41bb41
-
SHA256
1b393591ac9858f949df77279d8ac941661187d8065b37fa3548c96b14234c94
-
SHA512
f3895b1c01f6285c2cf55944f302df37d8a246a3fac13981584b1182f2290a4236250e9c24d6d102c1e0be5d843295ae626b2d3ad81c84b9b4d0658c69c36196
-
SSDEEP
3072:Hl2VHNThyw0PhPtk9fYl9NkD7jOZlL6/cdILAyrXNipp3LRrCEH+gRrCulN:Hgtyw21t8fYl9NxyMIfr03eMuYN
Behavioral task
behavioral1
Sample
0b2ab24658b48f4e57c46c3eb07214b4_JaffaCakes118.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
0b2ab24658b48f4e57c46c3eb07214b4_JaffaCakes118.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
0b2ab24658b48f4e57c46c3eb07214b4_JaffaCakes118
-
Size
163KB
-
MD5
0b2ab24658b48f4e57c46c3eb07214b4
-
SHA1
ad21d9766e76da7ae6648822e51346e64b41bb41
-
SHA256
1b393591ac9858f949df77279d8ac941661187d8065b37fa3548c96b14234c94
-
SHA512
f3895b1c01f6285c2cf55944f302df37d8a246a3fac13981584b1182f2290a4236250e9c24d6d102c1e0be5d843295ae626b2d3ad81c84b9b4d0658c69c36196
-
SSDEEP
3072:Hl2VHNThyw0PhPtk9fYl9NkD7jOZlL6/cdILAyrXNipp3LRrCEH+gRrCulN:Hgtyw21t8fYl9NxyMIfr03eMuYN
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Deletes itself
-
Executes dropped EXE
-