General
-
Target
fd533ac1e8f81fc3ffb8bcebb586e48a_JaffaCakes118
-
Size
1.6MB
-
Sample
240928-233wvashqa
-
MD5
fd533ac1e8f81fc3ffb8bcebb586e48a
-
SHA1
b9ca7a600d8635cb57a336698c0c525e9b290c4b
-
SHA256
21fc0abe0bd49ac100693a58ce0091b0c30453177686235cf1400922192e55df
-
SHA512
5d17917ece1da6d6ae81feaa8e5c627a551e695af110ed4f82c5349a47b96fad01d8557278d56c1e6b42a734e5a32da93dc06e0a05fe36d7e733a13ea99a43e4
-
SSDEEP
24576:eGrxBQmqM1kgjjMs6uShGfM2pfkuVFp4P+v+bmOm2hOZvGnOnzAbEKIx0OPUj+Zq:HxUg0+7f5Fp4mTOm2h4oDc+z
Malware Config
Targets
-
-
Target
fd533ac1e8f81fc3ffb8bcebb586e48a_JaffaCakes118
-
Size
1.6MB
-
MD5
fd533ac1e8f81fc3ffb8bcebb586e48a
-
SHA1
b9ca7a600d8635cb57a336698c0c525e9b290c4b
-
SHA256
21fc0abe0bd49ac100693a58ce0091b0c30453177686235cf1400922192e55df
-
SHA512
5d17917ece1da6d6ae81feaa8e5c627a551e695af110ed4f82c5349a47b96fad01d8557278d56c1e6b42a734e5a32da93dc06e0a05fe36d7e733a13ea99a43e4
-
SSDEEP
24576:eGrxBQmqM1kgjjMs6uShGfM2pfkuVFp4P+v+bmOm2hOZvGnOnzAbEKIx0OPUj+Zq:HxUg0+7f5Fp4mTOm2h4oDc+z
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Identifies Wine through registry keys
Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
-
Themida packer
Detects Themida, an advanced Windows software protection system.
-