Overview

overview

10

Static

static

3

f74b1ae73e...18.exe

windows7-x64

10

f74b1ae73e...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f74b1ae73e749c08809ec5b213cabf1b_JaffaCakes118

  • Size

    1.7MB

  • Sample

    240926-b7x82szenq

  • MD5

    f74b1ae73e749c08809ec5b213cabf1b

  • SHA1

    724293e5743d84ffd4373a5dae610c4d87295be2

  • SHA256

    94aec1db8eb364dd30bf67f0a2ddcdff3563eb2b4edfa92bdf581cbeed766e5a

  • SHA512

    8a67b9b6287b0108ff2abfb72db7a35d751cc26fdb011ce9d965699559095086a9ab625d5c454eccc0a339844de0e3b0444d9bb1a3960166d3059a42abafcac6

  • SSDEEP

    49152:FWfdbu1OoBhZPz/FSsVpYLa2ZkSIsZOHRcJw6/w:lOIZPz9SsygHR/sw

Score
10/10
modiloaderdiscoverytrojan

Malware Config

Targets

    • Target

      f74b1ae73e749c08809ec5b213cabf1b_JaffaCakes118

    • Size

      1.7MB

    • MD5

      f74b1ae73e749c08809ec5b213cabf1b

    • SHA1

      724293e5743d84ffd4373a5dae610c4d87295be2

    • SHA256

      94aec1db8eb364dd30bf67f0a2ddcdff3563eb2b4edfa92bdf581cbeed766e5a

    • SHA512

      8a67b9b6287b0108ff2abfb72db7a35d751cc26fdb011ce9d965699559095086a9ab625d5c454eccc0a339844de0e3b0444d9bb1a3960166d3059a42abafcac6

    • SSDEEP

      49152:FWfdbu1OoBhZPz/FSsVpYLa2ZkSIsZOHRcJw6/w:lOIZPz9SsygHR/sw

    Score
    10/10
    modiloaderdiscoverytrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • ModiLoader Second Stage

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks