Overview

overview

10

Static

static

3

fa2841104c...18.exe

windows7-x64

10

fa2841104c...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fa2841104c46c00b30eb024a11c48df5_JaffaCakes118

  • Size

    23KB

  • Sample

    240927-lhny7ayejc

  • MD5

    fa2841104c46c00b30eb024a11c48df5

  • SHA1

    089b71c6826a0ab48064e353069e70ca8bc74c48

  • SHA256

    94455a920f48cde55d1c5121c8f00cf35f08e4ff1ff8da598f9262620fd143bf

  • SHA512

    a93e89fc0a03070a137a490fd40b166b89be58bd72521e04d4ef277b0f0388f199063db29cf2f4ad9ed884525f805828b3321c26442513ab5acca10bd125bf52

  • SSDEEP

    384:V3dFCD29HoKi5bNazDeyyv1yYPVQC1ss4fcOAjiPRTUH2TA2u/3:NPCD6Xi5xazDu5PV7s5cOdZuQA2u/

Score
10/10
modiloaderdiscoverytrojan

Malware Config

Targets

    • Target

      fa2841104c46c00b30eb024a11c48df5_JaffaCakes118

    • Size

      23KB

    • MD5

      fa2841104c46c00b30eb024a11c48df5

    • SHA1

      089b71c6826a0ab48064e353069e70ca8bc74c48

    • SHA256

      94455a920f48cde55d1c5121c8f00cf35f08e4ff1ff8da598f9262620fd143bf

    • SHA512

      a93e89fc0a03070a137a490fd40b166b89be58bd72521e04d4ef277b0f0388f199063db29cf2f4ad9ed884525f805828b3321c26442513ab5acca10bd125bf52

    • SSDEEP

      384:V3dFCD29HoKi5bNazDeyyv1yYPVQC1ss4fcOAjiPRTUH2TA2u/3:NPCD6Xi5xazDu5PV7s5cOdZuQA2u/

    Score
    10/10
    modiloaderdiscoverytrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • ModiLoader Second Stage

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks