Overview

overview

10

Static

static

3

fc133876fe...18.exe

windows7-x64

10

fc133876fe...18.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fc133876fe7432b25bf307748c76887a_JaffaCakes118

  • Size

    712KB

  • Sample

    240928-l851dssepf

  • MD5

    fc133876fe7432b25bf307748c76887a

  • SHA1

    88008239cdc6e9480097ef20e281998f5ec46c1a

  • SHA256

    569ee93b898705b3454bcd3071b5a7324f50210a34a94ad94063373407f3b6b1

  • SHA512

    7546b89058077d924f148b0dba84c15be193aa096ba91956a7411bee1f352559021a71d9fdcb4b7f2e9357124c57b10865011612b059091bcb57c5c6ce8b6b92

  • SSDEEP

    12288:tGCEIaxpsdBCgdluAhni6EfPlha9Jadi9JfY6pbsPxrpAa9ZXfX1je55ffJQ:tTdEs5DuAhni6Alha9JadKAybsPJya9q

Score
10/10
modiloaderdiscoveryevasiontrojan

Malware Config

Targets

    • Target

      fc133876fe7432b25bf307748c76887a_JaffaCakes118

    • Size

      712KB

    • MD5

      fc133876fe7432b25bf307748c76887a

    • SHA1

      88008239cdc6e9480097ef20e281998f5ec46c1a

    • SHA256

      569ee93b898705b3454bcd3071b5a7324f50210a34a94ad94063373407f3b6b1

    • SHA512

      7546b89058077d924f148b0dba84c15be193aa096ba91956a7411bee1f352559021a71d9fdcb4b7f2e9357124c57b10865011612b059091bcb57c5c6ce8b6b92

    • SSDEEP

      12288:tGCEIaxpsdBCgdluAhni6EfPlha9Jadi9JfY6pbsPxrpAa9ZXfX1je55ffJQ:tTdEs5DuAhni6Alha9JadKAybsPJya9q

    Score
    10/10
    modiloaderdiscoveryevasiontrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • UAC bypass

      evasiontrojan

    • ModiLoader Second Stage

    • Loads dropped DLL

    • Checks whether UAC is enabled

      evasiontrojan
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks