General
-
Target
5f4daef816df7d028849be56a0222892_JaffaCakes118
-
Size
358KB
-
Sample
240720-gsjd8szann
-
MD5
5f4daef816df7d028849be56a0222892
-
SHA1
17319f7a226d89d2c50a07744e819d14770d693b
-
SHA256
46452e5cae49e828c415bf79433ab168bc09a146e60e12eb1e938039fdf08614
-
SHA512
8b68e46db255852ae51f00283ff9bcab62575224b871e210711f2a87bc03b84ed9ffd36fef7d952e369b352abf788cf9ab08e9ecdc33cb7de805d6eeb85c1405
-
SSDEEP
6144:JGyjnBSkuV1d4eZd88ORJIf/wTBg535vdmosGipc2UeKoSfU:8YnBSkuVUeZdYqwTGdmos5j3KoSf
Malware Config
Targets
-
-
Target
5f4daef816df7d028849be56a0222892_JaffaCakes118
-
Size
358KB
-
MD5
5f4daef816df7d028849be56a0222892
-
SHA1
17319f7a226d89d2c50a07744e819d14770d693b
-
SHA256
46452e5cae49e828c415bf79433ab168bc09a146e60e12eb1e938039fdf08614
-
SHA512
8b68e46db255852ae51f00283ff9bcab62575224b871e210711f2a87bc03b84ed9ffd36fef7d952e369b352abf788cf9ab08e9ecdc33cb7de805d6eeb85c1405
-
SSDEEP
6144:JGyjnBSkuV1d4eZd88ORJIf/wTBg535vdmosGipc2UeKoSfU:8YnBSkuVUeZdYqwTGdmos5j3KoSf
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
UAC bypass
-
ModiLoader Second Stage
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Checks whether UAC is enabled
-