General
-
Target
23af66a5d7a254b30fa0e902ee0bf1b8_JaffaCakes118
-
Size
403KB
-
Sample
240703-2h875azapj
-
MD5
23af66a5d7a254b30fa0e902ee0bf1b8
-
SHA1
4c71e39be1d440c1769c9969bdb266d32d67f2aa
-
SHA256
38b7580e0b1e6681088b8e0e7709ed928fbfe8339a21d8ac2219a6a28229f4ff
-
SHA512
55ccda85a96d9309cb8e813c9b0cb3a0172ad5cf0403cede101e4f3f2283a35cec9184d80a17a4084e632bb290f6ce3bda88da5107ef3996599bfff705f13b86
-
SSDEEP
6144:bxSj4t19ShsnZYd7hhgzX/aS8RqZwbdR9Uvx9Y75ZW6xHJzmEc7US:bxSU39xnqFrgTaScPSG7jZdmEh
Static task
static1
Behavioral task
behavioral1
Sample
23af66a5d7a254b30fa0e902ee0bf1b8_JaffaCakes118.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
23af66a5d7a254b30fa0e902ee0bf1b8_JaffaCakes118.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
23af66a5d7a254b30fa0e902ee0bf1b8_JaffaCakes118
-
Size
403KB
-
MD5
23af66a5d7a254b30fa0e902ee0bf1b8
-
SHA1
4c71e39be1d440c1769c9969bdb266d32d67f2aa
-
SHA256
38b7580e0b1e6681088b8e0e7709ed928fbfe8339a21d8ac2219a6a28229f4ff
-
SHA512
55ccda85a96d9309cb8e813c9b0cb3a0172ad5cf0403cede101e4f3f2283a35cec9184d80a17a4084e632bb290f6ce3bda88da5107ef3996599bfff705f13b86
-
SSDEEP
6144:bxSj4t19ShsnZYd7hhgzX/aS8RqZwbdR9Uvx9Y75ZW6xHJzmEc7US:bxSU39xnqFrgTaScPSG7jZdmEh
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Suspicious use of SetThreadContext
-