General
-
Target
228ce7c7293626b589feaff9216061ce_JaffaCakes118
-
Size
591KB
-
Sample
240703-qznrzazbjc
-
MD5
228ce7c7293626b589feaff9216061ce
-
SHA1
efcd8a23476df391ac4d8ec1667df2cfcca25dc5
-
SHA256
2e8c9ff0f36cc26566cd46c644507118cfea7f7ec647f9034505cb657b31fac7
-
SHA512
d9b4cd7c95016cf4db28bbe3377ed25b034778da0d6b4948dbe864af5776ab9522ea39e14d4573f012337dfc27494682295a4f684016b472f1450c7e42a04b6c
-
SSDEEP
12288:U+pPjVvjFnsF+PrI4LpJpJZGC1FAXPJF3Z4mxx+kGQ2Wd9AGAOut65HLZzKdJAVq:UYFsFElJTZGGAXhQmXIS9vAOz2dJGq
Static task
static1
Behavioral task
behavioral1
Sample
228ce7c7293626b589feaff9216061ce_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
228ce7c7293626b589feaff9216061ce_JaffaCakes118.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
228ce7c7293626b589feaff9216061ce_JaffaCakes118
-
Size
591KB
-
MD5
228ce7c7293626b589feaff9216061ce
-
SHA1
efcd8a23476df391ac4d8ec1667df2cfcca25dc5
-
SHA256
2e8c9ff0f36cc26566cd46c644507118cfea7f7ec647f9034505cb657b31fac7
-
SHA512
d9b4cd7c95016cf4db28bbe3377ed25b034778da0d6b4948dbe864af5776ab9522ea39e14d4573f012337dfc27494682295a4f684016b472f1450c7e42a04b6c
-
SSDEEP
12288:U+pPjVvjFnsF+PrI4LpJpJZGC1FAXPJF3Z4mxx+kGQ2Wd9AGAOut65HLZzKdJAVq:UYFsFElJTZGGAXhQmXIS9vAOz2dJGq
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Drops file in System32 directory
-