General
-
Target
df17a77c9a575cf2b8e44ab0327ddb95_JaffaCakes118
-
Size
24KB
-
Sample
240913-3g8ewavelr
-
MD5
df17a77c9a575cf2b8e44ab0327ddb95
-
SHA1
5f2fa75f4ac910655d072cf8220bfaf881934ce8
-
SHA256
20ee225638888e90f83ceab5598db6e6a9ce851b7b8d0f24336a70be72e0790e
-
SHA512
0a0d8596c4a2169f62d88b50ab8a80d14499da11c978e760df4729335934cd7cb76296b857829af8b8598d56bb8519c496810ca9bb1e8100bda5d619b99564c8
-
SSDEEP
384:qlrKj7WmwdFCQkjOGXi3jBiS/gcHUEdCiNDDiz/elc1TL2c10s:q4jhwPCPOGXoD8iNc/91TL2W5
Static task
static1
Behavioral task
behavioral1
Sample
df17a77c9a575cf2b8e44ab0327ddb95_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
df17a77c9a575cf2b8e44ab0327ddb95_JaffaCakes118.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
df17a77c9a575cf2b8e44ab0327ddb95_JaffaCakes118
-
Size
24KB
-
MD5
df17a77c9a575cf2b8e44ab0327ddb95
-
SHA1
5f2fa75f4ac910655d072cf8220bfaf881934ce8
-
SHA256
20ee225638888e90f83ceab5598db6e6a9ce851b7b8d0f24336a70be72e0790e
-
SHA512
0a0d8596c4a2169f62d88b50ab8a80d14499da11c978e760df4729335934cd7cb76296b857829af8b8598d56bb8519c496810ca9bb1e8100bda5d619b99564c8
-
SSDEEP
384:qlrKj7WmwdFCQkjOGXi3jBiS/gcHUEdCiNDDiz/elc1TL2c10s:q4jhwPCPOGXoD8iNc/91TL2W5
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Executes dropped EXE
-
Loads dropped DLL
-