General
-
Target
f5e5dab20875c02a6744e49a91176ebc_JaffaCakes118
-
Size
2.0MB
-
Sample
240925-nf7dvswbnf
-
MD5
f5e5dab20875c02a6744e49a91176ebc
-
SHA1
fde11e8aa3360616d02315c77f02addd3d881b15
-
SHA256
5a4df5e3c1902bc3675c825ec200a31057a938dbccc70193d46ceb1c59a4a37a
-
SHA512
9a96a90ead7c52a8b77662e5d2bc4092eba3c27040441071ae942c9b520b94ab8ce01247246d62ae839c75258e1d741a9dc2eec5014b127a0380ce01a2d5fe2a
-
SSDEEP
49152:7Yk7bDWPMZPODctAhEigBweiXp8ew86ehoR3:7YyC0hOE0gKeiXp8eN6L
Malware Config
Targets
-
-
Target
f5e5dab20875c02a6744e49a91176ebc_JaffaCakes118
-
Size
2.0MB
-
MD5
f5e5dab20875c02a6744e49a91176ebc
-
SHA1
fde11e8aa3360616d02315c77f02addd3d881b15
-
SHA256
5a4df5e3c1902bc3675c825ec200a31057a938dbccc70193d46ceb1c59a4a37a
-
SHA512
9a96a90ead7c52a8b77662e5d2bc4092eba3c27040441071ae942c9b520b94ab8ce01247246d62ae839c75258e1d741a9dc2eec5014b127a0380ce01a2d5fe2a
-
SSDEEP
49152:7Yk7bDWPMZPODctAhEigBweiXp8ew86ehoR3:7YyC0hOE0gKeiXp8eN6L
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Identifies Wine through registry keys
Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
-
Themida packer
Detects Themida, an advanced Windows software protection system.
-