General
-
Target
c2704d5e093e69c0e42a904a363afb48_JaffaCakes118
-
Size
18KB
-
Sample
240826-g13g3syhlg
-
MD5
c2704d5e093e69c0e42a904a363afb48
-
SHA1
02a42132afaf9a40093e6ee472124fdf42cdb20c
-
SHA256
83cb83259ac6ac03e9a922835d8654cf455579e35bc6d36df0d8ae1e7af8ca07
-
SHA512
6dbd12dbc21962ca44e52801c2f8a418be9abf2f4902f3439806c249cbbc0d41a75bd7d9d9d70d8a2d8f4e6032d379882a65798b595e1c738a55220466826642
-
SSDEEP
384:W+wXPPJuijvPH/6o/hPMhpigR3az1WDAknjl2Zc5hB/:7w/H/6oJPMh/R3iCRjl55h5
Malware Config
Targets
-
-
Target
c2704d5e093e69c0e42a904a363afb48_JaffaCakes118
-
Size
18KB
-
MD5
c2704d5e093e69c0e42a904a363afb48
-
SHA1
02a42132afaf9a40093e6ee472124fdf42cdb20c
-
SHA256
83cb83259ac6ac03e9a922835d8654cf455579e35bc6d36df0d8ae1e7af8ca07
-
SHA512
6dbd12dbc21962ca44e52801c2f8a418be9abf2f4902f3439806c249cbbc0d41a75bd7d9d9d70d8a2d8f4e6032d379882a65798b595e1c738a55220466826642
-
SSDEEP
384:W+wXPPJuijvPH/6o/hPMhpigR3az1WDAknjl2Zc5hB/:7w/H/6oJPMh/R3iCRjl55h5
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Suspicious use of SetThreadContext
-