Overview

overview

10

Static

static

3

e94e3b8e51...18.exe

windows7-x64

10

e94e3b8e51...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e94e3b8e51032773f456ea39a5135cf8_JaffaCakes118

  • Size

    141KB

  • Sample

    240918-rmeh7svgjh

  • MD5

    e94e3b8e51032773f456ea39a5135cf8

  • SHA1

    0d0574d3713364be46f96f6ace785b52d71e779f

  • SHA256

    2a0869fd9b64ece60bce02fb856d9d113ca5f5740a06db06264ccf9375723403

  • SHA512

    8682ada3702a406812dfef04ca0d9b4fbe6380b65f30826c4ba957a75a9c9f6fd21e8e5aa16c79f3ebd37c9a80d45fc773d52ef5d722c626935deb12c5e89206

  • SSDEEP

    3072:Eh8YRHE5GsBZCu9MxOLMJN9BwFWv6S+iJuo2:e8C0GAZCvach5v6S+A2

Score
10/10
modiloaderdiscoverytrojan

Malware Config

Targets

    • Target

      e94e3b8e51032773f456ea39a5135cf8_JaffaCakes118

    • Size

      141KB

    • MD5

      e94e3b8e51032773f456ea39a5135cf8

    • SHA1

      0d0574d3713364be46f96f6ace785b52d71e779f

    • SHA256

      2a0869fd9b64ece60bce02fb856d9d113ca5f5740a06db06264ccf9375723403

    • SHA512

      8682ada3702a406812dfef04ca0d9b4fbe6380b65f30826c4ba957a75a9c9f6fd21e8e5aa16c79f3ebd37c9a80d45fc773d52ef5d722c626935deb12c5e89206

    • SSDEEP

      3072:Eh8YRHE5GsBZCu9MxOLMJN9BwFWv6S+iJuo2:e8C0GAZCvach5v6S+A2

    Score
    10/10
    modiloaderdiscoverytrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • ModiLoader Second Stage

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks