Overview

overview

10

Static

static

3

ee547d07a6...18.exe

windows7-x64

10

ee547d07a6...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ee547d07a66ddee8cd8a89f5c7af17e0_JaffaCakes118

  • Size

    353KB

  • Sample

    240920-ys2n9avgrk

  • MD5

    ee547d07a66ddee8cd8a89f5c7af17e0

  • SHA1

    5fa01bd7b8b42f6c136a771c1323464514359253

  • SHA256

    01ee00438aae21b9e5e71585ce24f95f99cd3f47cf8430bec99e590122b7c0e3

  • SHA512

    519cfa9ebf588f3311d153d7c887f94991213e78e30d696da1b7b711419e3b3b83963553c923a1bb51728e9238e03373f5a93c85942b8e8ef9458f7e7783919b

  • SSDEEP

    6144:VApv2TGV7drbndj93FK+BX2JagZfjhJkiZdkCGrAtDuWhXVf40gPbuykp:VApv2T8Bn3FsthawZGctB9gzyp

Score
10/10
modiloaderdiscoverytrojan

Malware Config

Targets

    • Target

      ee547d07a66ddee8cd8a89f5c7af17e0_JaffaCakes118

    • Size

      353KB

    • MD5

      ee547d07a66ddee8cd8a89f5c7af17e0

    • SHA1

      5fa01bd7b8b42f6c136a771c1323464514359253

    • SHA256

      01ee00438aae21b9e5e71585ce24f95f99cd3f47cf8430bec99e590122b7c0e3

    • SHA512

      519cfa9ebf588f3311d153d7c887f94991213e78e30d696da1b7b711419e3b3b83963553c923a1bb51728e9238e03373f5a93c85942b8e8ef9458f7e7783919b

    • SSDEEP

      6144:VApv2TGV7drbndj93FK+BX2JagZfjhJkiZdkCGrAtDuWhXVf40gPbuykp:VApv2T8Bn3FsthawZGctB9gzyp

    Score
    10/10
    modiloaderdiscoverytrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • ModiLoader Second Stage

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks