Overview

overview

10

Static

static

3

dec23e985f...18.exe

windows7-x64

10

dec23e985f...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    dec23e985f1b0d9f9cf8ee5630c11c5d_JaffaCakes118

  • Size

    692KB

  • Sample

    240913-x7yepsvapq

  • MD5

    dec23e985f1b0d9f9cf8ee5630c11c5d

  • SHA1

    6724a21dccc752c3bfcd88e928fe56c341e288cf

  • SHA256

    da71b1111bc6537611b461cf4ead02335d5cc11e06e1905b1294a842890148d0

  • SHA512

    8870762234eee0f1a7472172d6601d64be319657537d91bae851dad7ba708e64aaaa12eea705b91cc05079d6508de8365ccc77d7fbb1217bfe74cd9868ecca55

  • SSDEEP

    12288:bWBLcRhSGxuVOqUeh1d3SQ/QDsTXXE9HHDiajKMLrEXHAlo0rfBvJkgeuLPoy2:bCcRhSXhph1oQoIY9HHeajNLrEm3N+gI

Score
10/10
modiloaderdiscoverytrojan

Malware Config

Targets

    • Target

      dec23e985f1b0d9f9cf8ee5630c11c5d_JaffaCakes118

    • Size

      692KB

    • MD5

      dec23e985f1b0d9f9cf8ee5630c11c5d

    • SHA1

      6724a21dccc752c3bfcd88e928fe56c341e288cf

    • SHA256

      da71b1111bc6537611b461cf4ead02335d5cc11e06e1905b1294a842890148d0

    • SHA512

      8870762234eee0f1a7472172d6601d64be319657537d91bae851dad7ba708e64aaaa12eea705b91cc05079d6508de8365ccc77d7fbb1217bfe74cd9868ecca55

    • SSDEEP

      12288:bWBLcRhSGxuVOqUeh1d3SQ/QDsTXXE9HHDiajKMLrEXHAlo0rfBvJkgeuLPoy2:bCcRhSXhph1oQoIY9HHeajNLrEm3N+gI

    Score
    10/10
    modiloaderdiscoverytrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • ModiLoader Second Stage

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks