General
-
Target
0b3e58e77dbdd6b5a068ef1b11bd6661_JaffaCakes118
-
Size
88KB
-
Sample
240621-nyfc4asdjk
-
MD5
0b3e58e77dbdd6b5a068ef1b11bd6661
-
SHA1
daf15139d11fe2eb85caa521e2c82331c31e6aa8
-
SHA256
795d0110bc3771481090aab4b6de57681566198f5507eb6ade5b3ce0f5767ae1
-
SHA512
636466270dd2901f9ad635f21176a4c2cf1204944932e1c701b1ae5addb6c733137796955fb4e2f6f01d1302140ae13da79126f4d04a085a8a53357ee5974991
-
SSDEEP
1536:ARrqdRQVsiz2ll3bcoNNFv63GUt4Z/lnssG5CAiQJFqPhoSM:CVdiLcoVC3bqZ/xssuCAik2LM
Behavioral task
behavioral1
Sample
0b3e58e77dbdd6b5a068ef1b11bd6661_JaffaCakes118.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
0b3e58e77dbdd6b5a068ef1b11bd6661_JaffaCakes118.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
0b3e58e77dbdd6b5a068ef1b11bd6661_JaffaCakes118
-
Size
88KB
-
MD5
0b3e58e77dbdd6b5a068ef1b11bd6661
-
SHA1
daf15139d11fe2eb85caa521e2c82331c31e6aa8
-
SHA256
795d0110bc3771481090aab4b6de57681566198f5507eb6ade5b3ce0f5767ae1
-
SHA512
636466270dd2901f9ad635f21176a4c2cf1204944932e1c701b1ae5addb6c733137796955fb4e2f6f01d1302140ae13da79126f4d04a085a8a53357ee5974991
-
SSDEEP
1536:ARrqdRQVsiz2ll3bcoNNFv63GUt4Z/lnssG5CAiQJFqPhoSM:CVdiLcoVC3bqZ/xssuCAik2LM
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Suspicious use of SetThreadContext
-