General
-
Target
f5d2ac0b5b2a9fcd5e2dc1f27cde8dde_JaffaCakes118
-
Size
431KB
-
Sample
240925-mp6y1stgmf
-
MD5
f5d2ac0b5b2a9fcd5e2dc1f27cde8dde
-
SHA1
e61f908318c8e931dd7ae0711ed4464ede044094
-
SHA256
162996cb6f833e3828fdf94524afc33f0f6d9f32d3b163af389d958431be4391
-
SHA512
95c7bb3f0d891cd6d42ddf5d6473c46036ef68adae09ac82e3f9b05b968f610d168607e4af33b6fc24d7a4a3fc309073ef7cc890d9ee91923dd0996248c159d5
-
SSDEEP
12288:Vc//////8wTHpgtpdrQED77XFcYxU9rEhA7rPgCPi2UhmHg0R5:Vc//////hTH8aK/x4MCPiPAH55
Malware Config
Targets
-
-
Target
f5d2ac0b5b2a9fcd5e2dc1f27cde8dde_JaffaCakes118
-
Size
431KB
-
MD5
f5d2ac0b5b2a9fcd5e2dc1f27cde8dde
-
SHA1
e61f908318c8e931dd7ae0711ed4464ede044094
-
SHA256
162996cb6f833e3828fdf94524afc33f0f6d9f32d3b163af389d958431be4391
-
SHA512
95c7bb3f0d891cd6d42ddf5d6473c46036ef68adae09ac82e3f9b05b968f610d168607e4af33b6fc24d7a4a3fc309073ef7cc890d9ee91923dd0996248c159d5
-
SSDEEP
12288:Vc//////8wTHpgtpdrQED77XFcYxU9rEhA7rPgCPi2UhmHg0R5:Vc//////hTH8aK/x4MCPiPAH55
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-