Overview

overview

10

Static

static

10

d90fdbd04e...18.exe

windows7-x64

10

d90fdbd04e...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d90fdbd04e3ab9448dd30bb5365d1b80_JaffaCakes118

  • Size

    270KB

  • Sample

    240910-1cp2maxeqa

  • MD5

    d90fdbd04e3ab9448dd30bb5365d1b80

  • SHA1

    88d8a9f2cc37f4c106cf19451d876087b0f161ca

  • SHA256

    3f2c1c8fb3d36ccd0a935f16192c44d1d6ba221d83c4b8845c5a76d871bbc26d

  • SHA512

    72f896a3cb5ae05660da79b924f93bd21eb384f54cb9951940070b2eae8528c68e82a498ccbc7d6b30f015460200f96aa50afd7f55139315421b254cfefd437e

  • SSDEEP

    6144:KG377xS2Vp2CeiorXhwTBOz53GpcCJJvH:Zr7xS2Vp6FwTtbJJvH

Score
10/10
modiloaderdiscoveryevasiontrojan

Malware Config

Targets

    • Target

      d90fdbd04e3ab9448dd30bb5365d1b80_JaffaCakes118

    • Size

      270KB

    • MD5

      d90fdbd04e3ab9448dd30bb5365d1b80

    • SHA1

      88d8a9f2cc37f4c106cf19451d876087b0f161ca

    • SHA256

      3f2c1c8fb3d36ccd0a935f16192c44d1d6ba221d83c4b8845c5a76d871bbc26d

    • SHA512

      72f896a3cb5ae05660da79b924f93bd21eb384f54cb9951940070b2eae8528c68e82a498ccbc7d6b30f015460200f96aa50afd7f55139315421b254cfefd437e

    • SSDEEP

      6144:KG377xS2Vp2CeiorXhwTBOz53GpcCJJvH:Zr7xS2Vp6FwTtbJJvH

    Score
    10/10
    modiloaderdiscoveryevasiontrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • UAC bypass

      evasiontrojan

    • ModiLoader Second Stage

    • Loads dropped DLL

    • Checks whether UAC is enabled

      evasiontrojan
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks