General
-
Target
e25af19a769a5ff23e87b7114ffff99f_JaffaCakes118
-
Size
1.2MB
-
Sample
240915-ncv7es1hkp
-
MD5
e25af19a769a5ff23e87b7114ffff99f
-
SHA1
b6644cbe20f1e08e0186621c98196492a64a4a68
-
SHA256
2e619d0973ee834148a7022df717b259ae11cfcd629168f980fc1f579953a2a7
-
SHA512
4244b869bff399579ff154540d6fcb01561196477b6aca489aee858146332def1ce080d2877599956accaa6209fa687e6341bfb597476be0f02fa635826f71a0
-
SSDEEP
24576:QvfMLNEduc9WG6o2+wNqfmuvQ70HMlpPGv58xMH65Zh2f6Kr6fVnUL:QYNRG92+wNmnHMlpPM5k5ZYf0m
Malware Config
Targets
-
-
Target
e25af19a769a5ff23e87b7114ffff99f_JaffaCakes118
-
Size
1.2MB
-
MD5
e25af19a769a5ff23e87b7114ffff99f
-
SHA1
b6644cbe20f1e08e0186621c98196492a64a4a68
-
SHA256
2e619d0973ee834148a7022df717b259ae11cfcd629168f980fc1f579953a2a7
-
SHA512
4244b869bff399579ff154540d6fcb01561196477b6aca489aee858146332def1ce080d2877599956accaa6209fa687e6341bfb597476be0f02fa635826f71a0
-
SSDEEP
24576:QvfMLNEduc9WG6o2+wNqfmuvQ70HMlpPGv58xMH65Zh2f6Kr6fVnUL:QYNRG92+wNmnHMlpPM5k5ZYf0m
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Themida packer
Detects Themida, an advanced Windows software protection system.
-
Suspicious use of SetThreadContext
-