General
-
Target
e600f2f8c6b034cff0742ea9c0c069fd_JaffaCakes118
-
Size
399KB
-
Sample
240917-eg1g9stdlr
-
MD5
e600f2f8c6b034cff0742ea9c0c069fd
-
SHA1
8f1aa1d14907b3a35fdadb26937da8c5f88a9093
-
SHA256
185750511eac369563dba5577c74d77fb0e8be919505c9412f9b4097e77aa528
-
SHA512
70304dda1918ef6b6e16bd54b4a82f800925b423d7363073bfe94a09ee24728c0d788eea671c386b637cbf0b87707ece1db07c3203f400f57e8b87a04aa73414
-
SSDEEP
12288:85QK3OfgFmjJfR+q+UTzI8GFWid/lTk2XMK9I3s2Or/:Dgk/+q+ZzD/xk28K4zOr/
Malware Config
Targets
-
-
Target
e600f2f8c6b034cff0742ea9c0c069fd_JaffaCakes118
-
Size
399KB
-
MD5
e600f2f8c6b034cff0742ea9c0c069fd
-
SHA1
8f1aa1d14907b3a35fdadb26937da8c5f88a9093
-
SHA256
185750511eac369563dba5577c74d77fb0e8be919505c9412f9b4097e77aa528
-
SHA512
70304dda1918ef6b6e16bd54b4a82f800925b423d7363073bfe94a09ee24728c0d788eea671c386b637cbf0b87707ece1db07c3203f400f57e8b87a04aa73414
-
SSDEEP
12288:85QK3OfgFmjJfR+q+UTzI8GFWid/lTk2XMK9I3s2Or/:Dgk/+q+ZzD/xk28K4zOr/
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Suspicious use of SetThreadContext
-