General
-
Target
5c6298764ccf6dd9540913c804cea646_JaffaCakes118
-
Size
667KB
-
Sample
240719-r4d9rszcnh
-
MD5
5c6298764ccf6dd9540913c804cea646
-
SHA1
d38205c76faf1432bbe8da38a9e7be66061d7c83
-
SHA256
6e5ceca74ac8fb64c603097c5c21f363a005ad726f0d68619b211d695ef3228f
-
SHA512
dfb70bdb1596bfac4f5691c2ec8bff88a0135fdccb5e55de7d63e51fbf48892e67e5d8f9e7f842a72145d1eae06d7a7f0f25786e59284f772834368afd5ba185
-
SSDEEP
12288:jYCopATH2Bft4VpgqaOb+XHuQw2hv1zq0FJkQhz7XxqF3Z4mxx1zWkDX6z+6tvWF:jJTH2Bft4AVOb+1RRqGhzdqQmXM5z+6+
Malware Config
Targets
-
-
Target
5c6298764ccf6dd9540913c804cea646_JaffaCakes118
-
Size
667KB
-
MD5
5c6298764ccf6dd9540913c804cea646
-
SHA1
d38205c76faf1432bbe8da38a9e7be66061d7c83
-
SHA256
6e5ceca74ac8fb64c603097c5c21f363a005ad726f0d68619b211d695ef3228f
-
SHA512
dfb70bdb1596bfac4f5691c2ec8bff88a0135fdccb5e55de7d63e51fbf48892e67e5d8f9e7f842a72145d1eae06d7a7f0f25786e59284f772834368afd5ba185
-
SSDEEP
12288:jYCopATH2Bft4VpgqaOb+XHuQw2hv1zq0FJkQhz7XxqF3Z4mxx1zWkDX6z+6tvWF:jJTH2Bft4AVOb+1RRqGhzdqQmXM5z+6+
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-