General

  • Target

    22ebba5078973d10b3c235b175fe1d67_JaffaCakes118

  • Size

    620KB

  • Sample

    240703-s9z9vsxfmd

  • MD5

    22ebba5078973d10b3c235b175fe1d67

  • SHA1

    7c7ddf9255b0b1775aab92da2f7edcc1f6dc9f37

  • SHA256

    c84a7b09bbfe6d73c51c0218bfc7b37bb064bcc76e1dffe46f124f924a8483fc

  • SHA512

    22f589506c5b52c91c74494d1f3113aeee31d91b40867e5cec62653887cccf83debfd932c8d95560b35d2a7da94ae1632db11d640b62598d7754f9c950cd79fc

  • SSDEEP

    12288:ttvW15+9KF3Z4mxxTum/TVcp3w1mmndWJPsWc/5O:tte+QQmXCmbep3w1vndUm8

Score
10/10

Malware Config

Targets

    • Target

      22ebba5078973d10b3c235b175fe1d67_JaffaCakes118

    • Size

      620KB

    • MD5

      22ebba5078973d10b3c235b175fe1d67

    • SHA1

      7c7ddf9255b0b1775aab92da2f7edcc1f6dc9f37

    • SHA256

      c84a7b09bbfe6d73c51c0218bfc7b37bb064bcc76e1dffe46f124f924a8483fc

    • SHA512

      22f589506c5b52c91c74494d1f3113aeee31d91b40867e5cec62653887cccf83debfd932c8d95560b35d2a7da94ae1632db11d640b62598d7754f9c950cd79fc

    • SSDEEP

      12288:ttvW15+9KF3Z4mxxTum/TVcp3w1mmndWJPsWc/5O:tte+QQmXCmbep3w1vndUm8

    Score
    10/10
    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

    • ModiLoader Second Stage

    • Deletes itself

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks