Overview

overview

10

Static

static

3

f9a3ac2df1...18.exe

windows7-x64

10

f9a3ac2df1...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f9a3ac2df15abe83e8b0a9db37008dde_JaffaCakes118

  • Size

    739KB

  • Sample

    240927-d6tkkswerh

  • MD5

    f9a3ac2df15abe83e8b0a9db37008dde

  • SHA1

    894002b27b9965b7cd8fbda5cc4f2608f95705c1

  • SHA256

    54e4f6d6b8dea267a787a2f9ff80b493e9febb5383c0cc62964b77dae406eafa

  • SHA512

    902952dcde5e5f5ec8ea38b7e8bcd909591e2d2a4056d22a0f9be218f71955051800ad7fb1f3461effdf79e0826218d034f82cc2cd61e5cad06d75fbf2b35f8e

  • SSDEEP

    12288:vhc//////MuqVVuebVfqT0R5LzdFpFGSkShmlNgzdO1BjfCtGdIYH:pc//////MbVVueZfWq3zwBOzUja0dIYH

Score
10/10
modiloaderdiscoverytrojan

Malware Config

Targets

    • Target

      f9a3ac2df15abe83e8b0a9db37008dde_JaffaCakes118

    • Size

      739KB

    • MD5

      f9a3ac2df15abe83e8b0a9db37008dde

    • SHA1

      894002b27b9965b7cd8fbda5cc4f2608f95705c1

    • SHA256

      54e4f6d6b8dea267a787a2f9ff80b493e9febb5383c0cc62964b77dae406eafa

    • SHA512

      902952dcde5e5f5ec8ea38b7e8bcd909591e2d2a4056d22a0f9be218f71955051800ad7fb1f3461effdf79e0826218d034f82cc2cd61e5cad06d75fbf2b35f8e

    • SSDEEP

      12288:vhc//////MuqVVuebVfqT0R5LzdFpFGSkShmlNgzdO1BjfCtGdIYH:pc//////MbVVueZfWq3zwBOzUja0dIYH

    Score
    10/10
    modiloaderdiscoverytrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • ModiLoader Second Stage

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks