Overview

overview

10

Static

static

10

yd-v2.0/QQ...��.url

windows7-x64

1

yd-v2.0/QQ...��.url

windows10-2004-x64

1

yd-v2.0/QQ...��.exe

windows7-x64

10

yd-v2.0/QQ...��.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8737303a8ee458e0fad15805da377a0f_JaffaCakes118

  • Size

    1.0MB

  • MD5

    8737303a8ee458e0fad15805da377a0f

  • SHA1

    5bf2a3eeb72db8289437411ccea88ca83cff4157

  • SHA256

    ebf2461cff25c2334479c59238291b2f32ea0326840c91cdf5d8dec77cd99d99

  • SHA512

    cd500effc1092791220e1d7594fbaae7f3ebf2f38d7d1d7fc378a02d6424916a76900b43e7b9bd306dbdaf5d88d4d9c4c643db423df936448fbb7ee70ac39e06

  • SSDEEP

    24576:8SHDLfPgB3/cUSFa0YgWoDDWKnuQ7ploIIzKYH5rxmzbePvfUEMMEP:8SgBiUEd/LloIIzte3UKMQ

Score
10/10
modiloader

Malware Config

Signatures

  • ModiLoader Second Stage 1 IoCs
  • Modiloader family
    modiloader
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 8737303a8ee458e0fad15805da377a0f_JaffaCakes118
    .rar
  • yd-v2.0/QQ远程监控软件免费版/Operate.ini
  • yd-v2.0/QQ远程监控软件免费版/QQ远程控制软件网址.url
    .url
  • yd-v2.0/QQ远程监控软件免费版/SERVER.dat
  • yd-v2.0/QQ远程监控软件免费版/远程监控.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections