General
-
Target
dbfee160f3aaa30c24928cd6862b738f_JaffaCakes118
-
Size
1.1MB
-
Sample
240912-hdqqfawdkh
-
MD5
dbfee160f3aaa30c24928cd6862b738f
-
SHA1
d7bf5e17e5b9a7f65a30f5dbb3a28d047b8490ba
-
SHA256
389690debd943b7b880b256dd61397624b99ed54b0fea09fda642ef910079a6a
-
SHA512
d5cc2dd7c3b00ba3d1d2bd16229ea8ff58dd24f1892b3e67e5394de0c69ff0a54876c381b394bb4a3eac21f3013b0dd115dbcc296846425e440ae2ffc56291ad
-
SSDEEP
24576:NV3S9drwOJq0ZkNcNQn/d/ayDBrMLJS0mOEN/9SiSwf:udrwOJq0WNcI/RXR30DEJ9lSwf
Malware Config
Targets
-
-
Target
dbfee160f3aaa30c24928cd6862b738f_JaffaCakes118
-
Size
1.1MB
-
MD5
dbfee160f3aaa30c24928cd6862b738f
-
SHA1
d7bf5e17e5b9a7f65a30f5dbb3a28d047b8490ba
-
SHA256
389690debd943b7b880b256dd61397624b99ed54b0fea09fda642ef910079a6a
-
SHA512
d5cc2dd7c3b00ba3d1d2bd16229ea8ff58dd24f1892b3e67e5394de0c69ff0a54876c381b394bb4a3eac21f3013b0dd115dbcc296846425e440ae2ffc56291ad
-
SSDEEP
24576:NV3S9drwOJq0ZkNcNQn/d/ayDBrMLJS0mOEN/9SiSwf:udrwOJq0WNcI/RXR30DEJ9lSwf
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Themida packer
Detects Themida, an advanced Windows software protection system.
-
Suspicious use of SetThreadContext
-