General

  • Target

    258a069f298179a7b4f2fbe8de76a423_JaffaCakes118

  • Size

    104KB

  • Sample

    240704-l3dc7axelh

  • MD5

    258a069f298179a7b4f2fbe8de76a423

  • SHA1

    5c323864f6a33ed50fbf1d7da1161d25147c8532

  • SHA256

    f81baefc57b8414417846194486ed284c12d701cf580db34471c4aaecdbde816

  • SHA512

    617e3b77535c609855686f0ce72465fbd0733ec0a45fc014ec4f918116b8bd67885c8b26b25a2ff134ade89a9913ca3ead84f3379e09282cf13800043d00382e

  • SSDEEP

    1536:fqqYFQ0CyAHkSqYyQJgzqt9n/MCp3ysbg0ayfwKvYLD:KFRCVyECqt9/np3yUjvY3

Score
10/10

Malware Config

Targets

    • Target

      258a069f298179a7b4f2fbe8de76a423_JaffaCakes118

    • Size

      104KB

    • MD5

      258a069f298179a7b4f2fbe8de76a423

    • SHA1

      5c323864f6a33ed50fbf1d7da1161d25147c8532

    • SHA256

      f81baefc57b8414417846194486ed284c12d701cf580db34471c4aaecdbde816

    • SHA512

      617e3b77535c609855686f0ce72465fbd0733ec0a45fc014ec4f918116b8bd67885c8b26b25a2ff134ade89a9913ca3ead84f3379e09282cf13800043d00382e

    • SSDEEP

      1536:fqqYFQ0CyAHkSqYyQJgzqt9n/MCp3ysbg0ayfwKvYLD:KFRCVyECqt9/np3yUjvY3

    Score
    10/10
    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

    • ModiLoader Second Stage

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks