General
-
Target
260237c1d4e8543e0861123621862a6d_JaffaCakes118
-
Size
173KB
-
Sample
240704-ybnq3axemg
-
MD5
260237c1d4e8543e0861123621862a6d
-
SHA1
3db335eb712f3b04a9e6a546976c97b28dd62224
-
SHA256
a55d19708abe112ce7c8392ffe3078dcc60d9c987de73c6770f5754406e2f46a
-
SHA512
2dcd9fa4df6852df9187a739feefb38688b92324afb1b1b1f90114a01caadd581a79b6845dc2e55291fe929a84dad3a7b60c7e1efa3ae8fbaa90f7e4a9ad794d
-
SSDEEP
3072:d9DulZKsSqzZjDDeqCe5ToU21kkH2ip0KuPk2afiMpltkrkbtNLWGti0:dKKsS+rIU2ykH2ipsPnafFlerkb3LrtP
Malware Config
Targets
-
-
Target
260237c1d4e8543e0861123621862a6d_JaffaCakes118
-
Size
173KB
-
MD5
260237c1d4e8543e0861123621862a6d
-
SHA1
3db335eb712f3b04a9e6a546976c97b28dd62224
-
SHA256
a55d19708abe112ce7c8392ffe3078dcc60d9c987de73c6770f5754406e2f46a
-
SHA512
2dcd9fa4df6852df9187a739feefb38688b92324afb1b1b1f90114a01caadd581a79b6845dc2e55291fe929a84dad3a7b60c7e1efa3ae8fbaa90f7e4a9ad794d
-
SSDEEP
3072:d9DulZKsSqzZjDDeqCe5ToU21kkH2ip0KuPk2afiMpltkrkbtNLWGti0:dKKsS+rIU2ykH2ipsPnafFlerkb3LrtP
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Boot or Logon Autostart Execution: Active Setup
Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
-