General
-
Target
227cdf03ddbc8f014ee7325dc6173983_JaffaCakes118
-
Size
665KB
-
Sample
240703-qk5f6szdnq
-
MD5
227cdf03ddbc8f014ee7325dc6173983
-
SHA1
214a4bf957a8bc74746ac7843816aeb1107f9111
-
SHA256
38251108ee4e642b24926ef353f273cbdde66aa0b17ca40a8fc30683a1f71952
-
SHA512
bf7efe5868db223af4f12814570ac5259af94a5aec6495ea1371188713838fb94d6a8ca7c0281b8438eb5e14c9e1985342c380368d7d9406b113aec332882b19
-
SSDEEP
12288:fUSZ6lVrCdN8ca4V+ed2BnRoj3YCLR9YTBxOsTYMC:fjwXCDtJVY903LNYxOsTYX
Behavioral task
behavioral1
Sample
227cdf03ddbc8f014ee7325dc6173983_JaffaCakes118.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
227cdf03ddbc8f014ee7325dc6173983_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
227cdf03ddbc8f014ee7325dc6173983_JaffaCakes118
-
Size
665KB
-
MD5
227cdf03ddbc8f014ee7325dc6173983
-
SHA1
214a4bf957a8bc74746ac7843816aeb1107f9111
-
SHA256
38251108ee4e642b24926ef353f273cbdde66aa0b17ca40a8fc30683a1f71952
-
SHA512
bf7efe5868db223af4f12814570ac5259af94a5aec6495ea1371188713838fb94d6a8ca7c0281b8438eb5e14c9e1985342c380368d7d9406b113aec332882b19
-
SSDEEP
12288:fUSZ6lVrCdN8ca4V+ed2BnRoj3YCLR9YTBxOsTYMC:fjwXCDtJVY903LNYxOsTYX
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Suspicious use of SetThreadContext
-