Overview

overview

10

Static

static

3

e30a7698bc...18.exe

windows7-x64

10

e30a7698bc...18.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e30a7698bc123ba05853c2e2e506cb9f_JaffaCakes118

  • Size

    496KB

  • Sample

    240915-v9bbvawamk

  • MD5

    e30a7698bc123ba05853c2e2e506cb9f

  • SHA1

    b941dbc37b906a648d4071f9d35bb78708ed2b50

  • SHA256

    ed68a5d66a3f9a656ac6f42e676cf444ff27a1c9a90d891a4dfaa373058ead75

  • SHA512

    923117913b0df6c63d30b4ff9c99838465eaca4af7551561634bc44311136ac5416cd499bd30b863eec61fbd3efa669386c0e301593a86a85b41e72394fc8bc4

  • SSDEEP

    12288:tKo9rwfwOWk0tfZg9g8ZWdtLrftalApAxARTK1Ypvn38WP:tD98fwOWk0MDZOtHNpAxIKapvf

Score
10/10
modiloaderdiscoverytrojan

Malware Config

Targets

    • Target

      e30a7698bc123ba05853c2e2e506cb9f_JaffaCakes118

    • Size

      496KB

    • MD5

      e30a7698bc123ba05853c2e2e506cb9f

    • SHA1

      b941dbc37b906a648d4071f9d35bb78708ed2b50

    • SHA256

      ed68a5d66a3f9a656ac6f42e676cf444ff27a1c9a90d891a4dfaa373058ead75

    • SHA512

      923117913b0df6c63d30b4ff9c99838465eaca4af7551561634bc44311136ac5416cd499bd30b863eec61fbd3efa669386c0e301593a86a85b41e72394fc8bc4

    • SSDEEP

      12288:tKo9rwfwOWk0tfZg9g8ZWdtLrftalApAxARTK1Ypvn38WP:tD98fwOWk0MDZOtHNpAxIKapvf

    Score
    10/10
    modiloaderdiscoverytrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • ModiLoader Second Stage

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks