General
-
Target
db3ba834690c13dbefdca84190f1d53e_JaffaCakes118
-
Size
98KB
-
Sample
240911-z48sdateqg
-
MD5
db3ba834690c13dbefdca84190f1d53e
-
SHA1
01cb4cef6d5c2657d012cacab11ab7034340b971
-
SHA256
be5339e0acf858a662ad99173b47614e3a7d5cf3253ea295a6a97a4394e9e537
-
SHA512
34b2a07754ee3c8ee97147769ba7275fe97c59a67e19eb1d0200e0f9458ad81f6a83e1c6dcf024cb0f3f0b5f1c9b79c51061c88cdbfc394bc5657afc712404af
-
SSDEEP
3072:v3muquR1vtYZw4BTrilKAtJwFK3kFGFyRsJDM:75R16ZwmTcKwJwFKUbsJ
Malware Config
Targets
-
-
Target
db3ba834690c13dbefdca84190f1d53e_JaffaCakes118
-
Size
98KB
-
MD5
db3ba834690c13dbefdca84190f1d53e
-
SHA1
01cb4cef6d5c2657d012cacab11ab7034340b971
-
SHA256
be5339e0acf858a662ad99173b47614e3a7d5cf3253ea295a6a97a4394e9e537
-
SHA512
34b2a07754ee3c8ee97147769ba7275fe97c59a67e19eb1d0200e0f9458ad81f6a83e1c6dcf024cb0f3f0b5f1c9b79c51061c88cdbfc394bc5657afc712404af
-
SSDEEP
3072:v3muquR1vtYZw4BTrilKAtJwFK3kFGFyRsJDM:75R16ZwmTcKwJwFKUbsJ
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Executes dropped EXE
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-