General

  • Target

    df17a77c9a575cf2b8e44ab0327ddb95_JaffaCakes118

  • Size

    24KB

  • Sample

    240913-3g8ewavelr

  • MD5

    df17a77c9a575cf2b8e44ab0327ddb95

  • SHA1

    5f2fa75f4ac910655d072cf8220bfaf881934ce8

  • SHA256

    20ee225638888e90f83ceab5598db6e6a9ce851b7b8d0f24336a70be72e0790e

  • SHA512

    0a0d8596c4a2169f62d88b50ab8a80d14499da11c978e760df4729335934cd7cb76296b857829af8b8598d56bb8519c496810ca9bb1e8100bda5d619b99564c8

  • SSDEEP

    384:qlrKj7WmwdFCQkjOGXi3jBiS/gcHUEdCiNDDiz/elc1TL2c10s:q4jhwPCPOGXoD8iNc/91TL2W5

Malware Config

Targets

    • Target

      df17a77c9a575cf2b8e44ab0327ddb95_JaffaCakes118

    • Size

      24KB

    • MD5

      df17a77c9a575cf2b8e44ab0327ddb95

    • SHA1

      5f2fa75f4ac910655d072cf8220bfaf881934ce8

    • SHA256

      20ee225638888e90f83ceab5598db6e6a9ce851b7b8d0f24336a70be72e0790e

    • SHA512

      0a0d8596c4a2169f62d88b50ab8a80d14499da11c978e760df4729335934cd7cb76296b857829af8b8598d56bb8519c496810ca9bb1e8100bda5d619b99564c8

    • SSDEEP

      384:qlrKj7WmwdFCQkjOGXi3jBiS/gcHUEdCiNDDiz/elc1TL2c10s:q4jhwPCPOGXoD8iNc/91TL2W5

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

    • ModiLoader Second Stage

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks