Overview

overview

10

Static

static

3

ccf7098395...18.exe

windows7-x64

10

ccf7098395...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ccf70983955db2b553c29412b9053b41_JaffaCakes118

  • Size

    331KB

  • Sample

    240831-rny91axgrm

  • MD5

    ccf70983955db2b553c29412b9053b41

  • SHA1

    7e8250ae920247ff2aa4154a32cf47c4b93eefe8

  • SHA256

    dc02fb09b29d76b66a8692163cf6e1d4baa25f7a97018f83e6e36b9e4a48923b

  • SHA512

    f0c93d31357d0b434b6437d8f07df5041cd911dc943ca607c6f141f499760a8f10a47a556d51879324202105aa09758289cbc2db277565f433520537e45df464

  • SSDEEP

    6144:G+53NpcCJJvH/uiWWGlybDyFeuQK7/v12dFwZDii11mI2FKUwp2EJ:HbJJvHGTWGluweub7H1ECDH11mxYppJ

Score
10/10
modiloaderdiscoveryevasiontrojan

Malware Config

Targets

    • Target

      ccf70983955db2b553c29412b9053b41_JaffaCakes118

    • Size

      331KB

    • MD5

      ccf70983955db2b553c29412b9053b41

    • SHA1

      7e8250ae920247ff2aa4154a32cf47c4b93eefe8

    • SHA256

      dc02fb09b29d76b66a8692163cf6e1d4baa25f7a97018f83e6e36b9e4a48923b

    • SHA512

      f0c93d31357d0b434b6437d8f07df5041cd911dc943ca607c6f141f499760a8f10a47a556d51879324202105aa09758289cbc2db277565f433520537e45df464

    • SSDEEP

      6144:G+53NpcCJJvH/uiWWGlybDyFeuQK7/v12dFwZDii11mI2FKUwp2EJ:HbJJvHGTWGluweub7H1ECDH11mxYppJ

    Score
    10/10
    modiloaderdiscoveryevasiontrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • UAC bypass

      evasiontrojan

    • ModiLoader Second Stage

    • Loads dropped DLL

    • Checks whether UAC is enabled

      evasiontrojan
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks