General
-
Target
d5296d91df5b8d0b7038fe7cc9468713_JaffaCakes118
-
Size
319KB
-
Sample
240908-1w3f3azdqg
-
MD5
d5296d91df5b8d0b7038fe7cc9468713
-
SHA1
0054af92a548738f362d06e53a93ad489bb8149f
-
SHA256
462921bc5651005cce1e4b5c017e1af36963a898405a503a1f27760ed92bd6c2
-
SHA512
c6c30b5fda195f199bd35d17285abbcba3bf452ea42e37c341fc2955c9891e9c29cdebbec338b4971a29858f10b462e62f10c50a1eca4ac701b45fc37501902f
-
SSDEEP
6144:okVg7kJpR+tTUi9+KUqRegbr+BEOpZlrf7Pf+bMSdTrAkr6:okVtJsoG+DgbHOpZlryMGYs6
Malware Config
Targets
-
-
Target
d5296d91df5b8d0b7038fe7cc9468713_JaffaCakes118
-
Size
319KB
-
MD5
d5296d91df5b8d0b7038fe7cc9468713
-
SHA1
0054af92a548738f362d06e53a93ad489bb8149f
-
SHA256
462921bc5651005cce1e4b5c017e1af36963a898405a503a1f27760ed92bd6c2
-
SHA512
c6c30b5fda195f199bd35d17285abbcba3bf452ea42e37c341fc2955c9891e9c29cdebbec338b4971a29858f10b462e62f10c50a1eca4ac701b45fc37501902f
-
SSDEEP
6144:okVg7kJpR+tTUi9+KUqRegbr+BEOpZlrf7Pf+bMSdTrAkr6:okVtJsoG+DgbHOpZlryMGYs6
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Adds policy Run key to start application
-
Suspicious use of SetThreadContext
-