Overview

overview

10

Static

static

10

3045b18bf8...18.dll

windows7-x64

10

3045b18bf8...18.dll

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    3045b18bf807acf4451c35fe215ba286_JaffaCakes118

  • Size

    123KB

  • Sample

    241010-rg151szapa

  • MD5

    3045b18bf807acf4451c35fe215ba286

  • SHA1

    c6ef9e3ca07b9075d8edd1e393fa86d1aa08f933

  • SHA256

    603726f16b4752a22c76b2708220672de4390c8128ff1cc196a01d4ba00a5cc7

  • SHA512

    19aa244c1e718d425a98fa77561a6d6c59610acaee57e00f5e4674ff79f8d56aeec7151787e3ecbdb2ace7f021f62fe62bd387548907e5380bd6223f99cb6221

  • SSDEEP

    3072:FOtsVfgHWSTHSN2J32rA2yjQBJLvSSkFZ350:FT4ANy32+sGSUZp

Score
10/10
modiloaderdiscoverytrojanupx

Malware Config

Targets

    • Target

      3045b18bf807acf4451c35fe215ba286_JaffaCakes118

    • Size

      123KB

    • MD5

      3045b18bf807acf4451c35fe215ba286

    • SHA1

      c6ef9e3ca07b9075d8edd1e393fa86d1aa08f933

    • SHA256

      603726f16b4752a22c76b2708220672de4390c8128ff1cc196a01d4ba00a5cc7

    • SHA512

      19aa244c1e718d425a98fa77561a6d6c59610acaee57e00f5e4674ff79f8d56aeec7151787e3ecbdb2ace7f021f62fe62bd387548907e5380bd6223f99cb6221

    • SSDEEP

      3072:FOtsVfgHWSTHSN2J32rA2yjQBJLvSSkFZ350:FT4ANy32+sGSUZp

    Score
    10/10
    modiloaderdiscoverytrojanupx

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • ModiLoader Second Stage

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks