Overview

overview

10

Static

static

3

f101431a30...18.exe

windows7-x64

10

f101431a30...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f101431a309a8878814cf361b695ff15_JaffaCakes118

  • Size

    22KB

  • Sample

    240922-bse4xsvgpd

  • MD5

    f101431a309a8878814cf361b695ff15

  • SHA1

    7046c3acaa39f67f8a7fe99603781da4efa2d9ef

  • SHA256

    4ada327ca2cb6da54dbc8faadc87a77d7741336103c94e9156059610910b6e14

  • SHA512

    92ba81b13c23dd91737355bd2669b4dfff8f5f7b7c670dde4527eec87d03ab9b0b154dfa9476ee5769105e16bd1f7a3a81df4e0f07f055f50ecf6e8db26ae5c1

  • SSDEEP

    384:T53b33fNZG3IlerI4tA9z0DU9I8wva392DQsl+4aE5a:9rvNZG3oerlSa49RX34c++RH

Score
10/10
modiloaderdiscoverytrojan

Malware Config

Targets

    • Target

      f101431a309a8878814cf361b695ff15_JaffaCakes118

    • Size

      22KB

    • MD5

      f101431a309a8878814cf361b695ff15

    • SHA1

      7046c3acaa39f67f8a7fe99603781da4efa2d9ef

    • SHA256

      4ada327ca2cb6da54dbc8faadc87a77d7741336103c94e9156059610910b6e14

    • SHA512

      92ba81b13c23dd91737355bd2669b4dfff8f5f7b7c670dde4527eec87d03ab9b0b154dfa9476ee5769105e16bd1f7a3a81df4e0f07f055f50ecf6e8db26ae5c1

    • SSDEEP

      384:T53b33fNZG3IlerI4tA9z0DU9I8wva392DQsl+4aE5a:9rvNZG3oerlSa49RX34c++RH

    Score
    10/10
    modiloaderdiscoverytrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • ModiLoader Second Stage

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks