General
-
Target
cd02f4398c38deb43211111e7c725b60_JaffaCakes118
-
Size
383KB
-
Sample
240831-r7pvnsygqe
-
MD5
cd02f4398c38deb43211111e7c725b60
-
SHA1
68b1dac7bd049ee452e76613dfc0f701b1de1b72
-
SHA256
b254c1814f2a27b5befc90960f40a2a547cfe8e991fe07ed08c5057b42165ef2
-
SHA512
78ce388e86be189f3894b3aa5b2d7d7a38aab5f4afe2c196ae5b0d347ac3df9eb557aa96476667e512fe7ceb2f3981ea8063c31cc5d48ea46f9fea38560a0d8d
-
SSDEEP
6144:KzO+ob7iGBCpdCNgHD0N0vaTMjpkFl+9u8Croad7zYoSZHk19jTBdEC1/:3+LGqMNgHQ3T6QlYeUoiE19jTcu/
Malware Config
Targets
-
-
Target
cd02f4398c38deb43211111e7c725b60_JaffaCakes118
-
Size
383KB
-
MD5
cd02f4398c38deb43211111e7c725b60
-
SHA1
68b1dac7bd049ee452e76613dfc0f701b1de1b72
-
SHA256
b254c1814f2a27b5befc90960f40a2a547cfe8e991fe07ed08c5057b42165ef2
-
SHA512
78ce388e86be189f3894b3aa5b2d7d7a38aab5f4afe2c196ae5b0d347ac3df9eb557aa96476667e512fe7ceb2f3981ea8063c31cc5d48ea46f9fea38560a0d8d
-
SSDEEP
6144:KzO+ob7iGBCpdCNgHD0N0vaTMjpkFl+9u8Croad7zYoSZHk19jTBdEC1/:3+LGqMNgHQ3T6QlYeUoiE19jTcu/
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-