General

  • Target

    254d160a196dec6f2d1fbf0af0953cef_JaffaCakes118

  • Size

    593KB

  • Sample

    240704-kh3xnsvdmh

  • MD5

    254d160a196dec6f2d1fbf0af0953cef

  • SHA1

    1b47e9921ef3af0559f694bc556a2566d20f04b7

  • SHA256

    c994cfccc6022773eb9d18c046c1cf856b77143827e93f214d46e08e978e1ddd

  • SHA512

    24c399e13abc77a299a9b79c496968edffe11445d7581003f5248cde2a3a89493aaa5608cc73721301b7d41f186609f57f36201c31c4c0c1c15008906373ae58

  • SSDEEP

    12288:yZ/RzUz0HDAF3Z4mxxC4sLu0xDNTxWlh054Z8iejxn/:4zUAHcQmXC4UpBxWE4ZN+n/

Score
10/10

Malware Config

Targets

    • Target

      254d160a196dec6f2d1fbf0af0953cef_JaffaCakes118

    • Size

      593KB

    • MD5

      254d160a196dec6f2d1fbf0af0953cef

    • SHA1

      1b47e9921ef3af0559f694bc556a2566d20f04b7

    • SHA256

      c994cfccc6022773eb9d18c046c1cf856b77143827e93f214d46e08e978e1ddd

    • SHA512

      24c399e13abc77a299a9b79c496968edffe11445d7581003f5248cde2a3a89493aaa5608cc73721301b7d41f186609f57f36201c31c4c0c1c15008906373ae58

    • SSDEEP

      12288:yZ/RzUz0HDAF3Z4mxxC4sLu0xDNTxWlh054Z8iejxn/:4zUAHcQmXC4UpBxWE4ZN+n/

    Score
    10/10
    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

    • ModiLoader Second Stage

    • Deletes itself

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks