General
-
Target
ea97f1b863ad25b479c1b2226cf45be6_JaffaCakes118
-
Size
203KB
-
Sample
240919-e61jka1dpd
-
MD5
ea97f1b863ad25b479c1b2226cf45be6
-
SHA1
2cffa9a1ef4c3a154246479df8f1df462ee8f817
-
SHA256
c46b9f75fd3746c78664ef9c264c5171f0b8aec14500eb989e13da036689d6bf
-
SHA512
2a6a061cb7743615f9a810203cea59644b39b811dbf4f093ac6c6eb6b5975e2990dffd37bdf8f981b24050741600ebfd53d1416da59a62f9f188168afc46114b
-
SSDEEP
6144:tjkxGlkVGQY3FTSITHr0YbWsmt5SVNsNRo0Y:tjkxHgQY3FXb/b/wVRo5
Malware Config
Targets
-
-
Target
ea97f1b863ad25b479c1b2226cf45be6_JaffaCakes118
-
Size
203KB
-
MD5
ea97f1b863ad25b479c1b2226cf45be6
-
SHA1
2cffa9a1ef4c3a154246479df8f1df462ee8f817
-
SHA256
c46b9f75fd3746c78664ef9c264c5171f0b8aec14500eb989e13da036689d6bf
-
SHA512
2a6a061cb7743615f9a810203cea59644b39b811dbf4f093ac6c6eb6b5975e2990dffd37bdf8f981b24050741600ebfd53d1416da59a62f9f188168afc46114b
-
SSDEEP
6144:tjkxGlkVGQY3FTSITHr0YbWsmt5SVNsNRo0Y:tjkxHgQY3FXb/b/wVRo5
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Suspicious use of SetThreadContext
-