General
-
Target
227f1242b0d509773e3fe7aaaff6214b_JaffaCakes118
-
Size
16KB
-
Sample
240703-qnkwyayajd
-
MD5
227f1242b0d509773e3fe7aaaff6214b
-
SHA1
877a941857ff230019c70d71b545aaf6490042ad
-
SHA256
c8274da4679ab1c3e0be28bfc795a37c705e06823b715947026ae5edfa5ac469
-
SHA512
c87c02cffeead624a7ca7fa162339bb157fd633dec4b7b9659bc0bfbfc3a0ff44ccb920576736112e571401b969c8e9c5fd07a25d29dc4975dcc330ed114d9b0
-
SSDEEP
384:hbH7DRgrqxZbqIdyiKUOUNHu39kMyKSYJKxLMiuV:hbOAZbBdy8vNHUtyKhJP
Static task
static1
Behavioral task
behavioral1
Sample
227f1242b0d509773e3fe7aaaff6214b_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
227f1242b0d509773e3fe7aaaff6214b_JaffaCakes118.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
227f1242b0d509773e3fe7aaaff6214b_JaffaCakes118
-
Size
16KB
-
MD5
227f1242b0d509773e3fe7aaaff6214b
-
SHA1
877a941857ff230019c70d71b545aaf6490042ad
-
SHA256
c8274da4679ab1c3e0be28bfc795a37c705e06823b715947026ae5edfa5ac469
-
SHA512
c87c02cffeead624a7ca7fa162339bb157fd633dec4b7b9659bc0bfbfc3a0ff44ccb920576736112e571401b969c8e9c5fd07a25d29dc4975dcc330ed114d9b0
-
SSDEEP
384:hbH7DRgrqxZbqIdyiKUOUNHu39kMyKSYJKxLMiuV:hbOAZbBdy8vNHUtyKhJP
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Suspicious use of SetThreadContext
-