Overview

overview

10

Static

static

3

d04c579a33...18.exe

windows7-x64

10

d04c579a33...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d04c579a330c0b9c369cb815368655b7_JaffaCakes118

  • Size

    2.3MB

  • Sample

    240906-x5hlgathqd

  • MD5

    d04c579a330c0b9c369cb815368655b7

  • SHA1

    6011e63e1d0e551330cc557670fd38c759c68327

  • SHA256

    e0fdc56005966d4bdcbdf5b162b70422b1cb76b65e5da05c4cf469ca0ef1165d

  • SHA512

    1104436baea6cf883c755289f1f38f19e67b22b6ace9ef24ec2f6af2a0410990ac9d3db89e06ae094757825b27905c4628d03f68a192fc381196ec6e360bb3a2

  • SSDEEP

    49152:xM0oOgIXX+YfAxRnqxbKvniRVMgEKmZib5xG:

Score
10/10
modiloaderdiscoverytrojan

Malware Config

Targets

    • Target

      d04c579a330c0b9c369cb815368655b7_JaffaCakes118

    • Size

      2.3MB

    • MD5

      d04c579a330c0b9c369cb815368655b7

    • SHA1

      6011e63e1d0e551330cc557670fd38c759c68327

    • SHA256

      e0fdc56005966d4bdcbdf5b162b70422b1cb76b65e5da05c4cf469ca0ef1165d

    • SHA512

      1104436baea6cf883c755289f1f38f19e67b22b6ace9ef24ec2f6af2a0410990ac9d3db89e06ae094757825b27905c4628d03f68a192fc381196ec6e360bb3a2

    • SSDEEP

      49152:xM0oOgIXX+YfAxRnqxbKvniRVMgEKmZib5xG:

    Score
    10/10
    modiloaderdiscoverytrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • ModiLoader Second Stage

    • Executes dropped EXE

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks