Overview

overview

10

Static

static

3

faa97d59df...18.exe

windows7-x64

10

faa97d59df...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    faa97d59df66041f3ccaa1d2df87fb75_JaffaCakes118

  • Size

    2.0MB

  • Sample

    240927-sxcyssygjn

  • MD5

    faa97d59df66041f3ccaa1d2df87fb75

  • SHA1

    79392238b65b30411ef6ff20547ac218298e2605

  • SHA256

    cd95d8204764216325efa48c60404eec24f69282516a834df23bc369b9248032

  • SHA512

    62f1842a2e4d4e6ecb1c7ef4c418589ea4401337ee6e734611dfc52e1b2056372939f3c820d55dfde2da232c06b4803dc6738b3374572f76fb6ab308ff60afa2

  • SSDEEP

    24576:Af4jIqaKz3acn4FiMF9FYBQSgD2aSGe0ZyEBGaBND7qepnCohTLDLan6ovhyM/ji:Af40bk74FrYo2aSGHZySZqea6o5y+wTt

Score
10/10
modiloaderdiscoverytrojan

Malware Config

Targets

    • Target

      faa97d59df66041f3ccaa1d2df87fb75_JaffaCakes118

    • Size

      2.0MB

    • MD5

      faa97d59df66041f3ccaa1d2df87fb75

    • SHA1

      79392238b65b30411ef6ff20547ac218298e2605

    • SHA256

      cd95d8204764216325efa48c60404eec24f69282516a834df23bc369b9248032

    • SHA512

      62f1842a2e4d4e6ecb1c7ef4c418589ea4401337ee6e734611dfc52e1b2056372939f3c820d55dfde2da232c06b4803dc6738b3374572f76fb6ab308ff60afa2

    • SSDEEP

      24576:Af4jIqaKz3acn4FiMF9FYBQSgD2aSGe0ZyEBGaBND7qepnCohTLDLan6ovhyM/ji:Af40bk74FrYo2aSGHZySZqea6o5y+wTt

    Score
    10/10
    modiloaderdiscoverytrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • ModiLoader Second Stage

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks