General
-
Target
22f9c48aecdff7bab7a713fb9924b194_JaffaCakes118
-
Size
744KB
-
Sample
240703-tj6jmaxhml
-
MD5
22f9c48aecdff7bab7a713fb9924b194
-
SHA1
aaa8cff8e585e264dc30c9ac2d07935bc4cfdfb3
-
SHA256
5c1f9fe29360c1fae71ff9c62f05796e52e97df2797ee48b916cafb13b4c8d82
-
SHA512
a9114efcfebef43e43d1518cac4664d9479c00f1895184c4046299372559725c61883365ef25b3c57cd0e487dcd62951f58a85500c848f98b5139112ecda58f0
-
SSDEEP
12288:qc//////vaK8cq39KWHJ3ECfbxgr8RUWS0ewHCjU67UjqBgx4D6AVNZRU52CfAzE:qc//////CK8cq8UyCfy8RUNCHCju+BgJ
Static task
static1
Behavioral task
behavioral1
Sample
22f9c48aecdff7bab7a713fb9924b194_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
22f9c48aecdff7bab7a713fb9924b194_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
22f9c48aecdff7bab7a713fb9924b194_JaffaCakes118
-
Size
744KB
-
MD5
22f9c48aecdff7bab7a713fb9924b194
-
SHA1
aaa8cff8e585e264dc30c9ac2d07935bc4cfdfb3
-
SHA256
5c1f9fe29360c1fae71ff9c62f05796e52e97df2797ee48b916cafb13b4c8d82
-
SHA512
a9114efcfebef43e43d1518cac4664d9479c00f1895184c4046299372559725c61883365ef25b3c57cd0e487dcd62951f58a85500c848f98b5139112ecda58f0
-
SSDEEP
12288:qc//////vaK8cq39KWHJ3ECfbxgr8RUWS0ewHCjU67UjqBgx4D6AVNZRU52CfAzE:qc//////CK8cq8UyCfy8RUNCHCju+BgJ
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Suspicious use of SetThreadContext
-