General
-
Target
facb77e3a3328039e96d4bf349858917_JaffaCakes118
-
Size
711KB
-
Sample
240927-yet29awcmm
-
MD5
facb77e3a3328039e96d4bf349858917
-
SHA1
a08e26242c5692378a3ab33ed43ee9f7a125639d
-
SHA256
5a430a8fa1cb77466b63cd9dd5353c43da1208d88550f1a7544c0a16296511fc
-
SHA512
75dd9355951c23a5f49ea6d5ba38cb5e9f16e1b8c5e107e5285ab54031549e2e071a5531d7cb30e8d004474e693e083e46f8df88574391875881dcc271126261
-
SSDEEP
12288:Kc//////gsZfPTQgGLUEQMCwOM+YgRzZMAsZP556qDUjNeXL+p27mFNo86VLCt76:Kc//////gsdPTD6X3hOM+YglcZP556vi
Static task
static1
Behavioral task
behavioral1
Sample
facb77e3a3328039e96d4bf349858917_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
facb77e3a3328039e96d4bf349858917_JaffaCakes118.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
facb77e3a3328039e96d4bf349858917_JaffaCakes118
-
Size
711KB
-
MD5
facb77e3a3328039e96d4bf349858917
-
SHA1
a08e26242c5692378a3ab33ed43ee9f7a125639d
-
SHA256
5a430a8fa1cb77466b63cd9dd5353c43da1208d88550f1a7544c0a16296511fc
-
SHA512
75dd9355951c23a5f49ea6d5ba38cb5e9f16e1b8c5e107e5285ab54031549e2e071a5531d7cb30e8d004474e693e083e46f8df88574391875881dcc271126261
-
SSDEEP
12288:Kc//////gsZfPTQgGLUEQMCwOM+YgRzZMAsZP556qDUjNeXL+p27mFNo86VLCt76:Kc//////gsdPTD6X3hOM+YglcZP556vi
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Suspicious use of SetThreadContext
-