Overview

overview

10

Static

static

3

0438d58197...18.exe

windows7-x64

10

0438d58197...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0438d58197013262af6ad11b07dfb4db_JaffaCakes118

  • Size

    641KB

  • Sample

    241001-d47dnasfme

  • MD5

    0438d58197013262af6ad11b07dfb4db

  • SHA1

    ccc53f4438385d464e2d26f76de03a41548ddcbc

  • SHA256

    9eee20a73dfd745bbc1519426ce240ea241736d5ed1c50f3dc36d765eb04ce28

  • SHA512

    e6ec1aac04e7c30692b95beed01ad948d5765e0570b70e2845ae5fad8bc00eb247d7334477b6fa78f4ca376135cfaaa012bec670394496aedbf213a2a2bc0572

  • SSDEEP

    12288:mOA6kFjNqrj9jjEyWUdVjqxVF3Z4mxx9Gc0ebnzEayRfjUtM:mhJqVvSvQmX9GNe4RfB

Score
10/10
modiloaderdiscoverytrojan

Malware Config

Targets

    • Target

      0438d58197013262af6ad11b07dfb4db_JaffaCakes118

    • Size

      641KB

    • MD5

      0438d58197013262af6ad11b07dfb4db

    • SHA1

      ccc53f4438385d464e2d26f76de03a41548ddcbc

    • SHA256

      9eee20a73dfd745bbc1519426ce240ea241736d5ed1c50f3dc36d765eb04ce28

    • SHA512

      e6ec1aac04e7c30692b95beed01ad948d5765e0570b70e2845ae5fad8bc00eb247d7334477b6fa78f4ca376135cfaaa012bec670394496aedbf213a2a2bc0572

    • SSDEEP

      12288:mOA6kFjNqrj9jjEyWUdVjqxVF3Z4mxx9Gc0ebnzEayRfjUtM:mhJqVvSvQmX9GNe4RfB

    Score
    10/10
    modiloaderdiscoverytrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • ModiLoader Second Stage

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks