Overview

overview

10

Static

static

3

e97470c50d...18.exe

windows7-x64

10

e97470c50d...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e97470c50d6da4c0e04338c5f232b200_JaffaCakes118

  • Size

    581KB

  • Sample

    240918-s7rjyaygkd

  • MD5

    e97470c50d6da4c0e04338c5f232b200

  • SHA1

    0479533fc2020e5f07cd097a633d5cd497074872

  • SHA256

    235f61da170c037346e0211cee8b7ff535fbdb91ae308a3bf3234c3b0d2d1a98

  • SHA512

    cb99d1fbc2aed1990bdf177ea6d42a9c3be923d9687f6fc2a1c7bf1d9af1f00988660bef7e21d784660b917c79293b967a35fea6bfb1645e1a1439376b838790

  • SSDEEP

    12288:0hj9vfHOXOyVyL+PKcj2mF3Z4mxxetOtMLdOaHchey:65XHOXODL+ycjdQmXMOehOaHchR

Score
10/10
modiloaderdiscoverytrojan

Malware Config

Targets

    • Target

      e97470c50d6da4c0e04338c5f232b200_JaffaCakes118

    • Size

      581KB

    • MD5

      e97470c50d6da4c0e04338c5f232b200

    • SHA1

      0479533fc2020e5f07cd097a633d5cd497074872

    • SHA256

      235f61da170c037346e0211cee8b7ff535fbdb91ae308a3bf3234c3b0d2d1a98

    • SHA512

      cb99d1fbc2aed1990bdf177ea6d42a9c3be923d9687f6fc2a1c7bf1d9af1f00988660bef7e21d784660b917c79293b967a35fea6bfb1645e1a1439376b838790

    • SSDEEP

      12288:0hj9vfHOXOyVyL+PKcj2mF3Z4mxxetOtMLdOaHchey:65XHOXODL+ycjdQmXMOehOaHchR

    Score
    10/10
    modiloaderdiscoverytrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • ModiLoader Second Stage

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks