General
-
Target
25b27306f50bb94b44f4cedbb673e469_JaffaCakes118
-
Size
475KB
-
Sample
240704-whka4stbpe
-
MD5
25b27306f50bb94b44f4cedbb673e469
-
SHA1
344207e41244990794ba93cb05cb74515fc11040
-
SHA256
788542029670578b86b7dd7a6fcf078acfd1ef2e9ea5538ea2be74acdd0268c5
-
SHA512
554554240c40df370633f421bd83d60c0e9f5c714f932160494b67d72bb06c2b16c9f23ecef771ea5a18ac987c23c2c359eccc90573e383fa8bad5453d89556c
-
SSDEEP
12288:7Q9XFCZ8Gyn45FF3Z4mxxmuxm1EZi9XxF9E2AGqX:0BF2YuQmX9w1wi9D9E2AB
Static task
static1
Behavioral task
behavioral1
Sample
25b27306f50bb94b44f4cedbb673e469_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
25b27306f50bb94b44f4cedbb673e469_JaffaCakes118.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
25b27306f50bb94b44f4cedbb673e469_JaffaCakes118
-
Size
475KB
-
MD5
25b27306f50bb94b44f4cedbb673e469
-
SHA1
344207e41244990794ba93cb05cb74515fc11040
-
SHA256
788542029670578b86b7dd7a6fcf078acfd1ef2e9ea5538ea2be74acdd0268c5
-
SHA512
554554240c40df370633f421bd83d60c0e9f5c714f932160494b67d72bb06c2b16c9f23ecef771ea5a18ac987c23c2c359eccc90573e383fa8bad5453d89556c
-
SSDEEP
12288:7Q9XFCZ8Gyn45FF3Z4mxxmuxm1EZi9XxF9E2AGqX:0BF2YuQmX9w1wi9D9E2AB
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Drops file in System32 directory
-