Overview

overview

10

Static

static

3

821a4e5154...18.exe

windows7-x64

1

821a4e5154...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    821a4e515410478059b647b21bd2ffdb_JaffaCakes118

  • Size

    476KB

  • Sample

    241031-hk4wmssfqd

  • MD5

    821a4e515410478059b647b21bd2ffdb

  • SHA1

    35274344ea6e33ebe0dfa97e9a0aa3d72c6bf2ba

  • SHA256

    e3f01a05abe2a91cf891bb7f0f2dae5b2a409710ba6af9aaab63ab67d413a46c

  • SHA512

    765d9abbf4dc49470607fcef6402d447cf6984622681a01fa7896e0f4c4efd0341f50b147f14cdea11cdf541da86782c5b5783f094c30d5935d9dc848ab047e2

  • SSDEEP

    6144:PjH17gWXRyMa2qZx/u1cPSOvkR2l8oUkUA98cwNZHIn2aTulM0c6ZADFIubVebpe:rVMKa2qX/k8YgU1cWin2p7GqG4p

Score
10/10
modiloaderdiscoverytrojan

Malware Config

Targets

    • Target

      821a4e515410478059b647b21bd2ffdb_JaffaCakes118

    • Size

      476KB

    • MD5

      821a4e515410478059b647b21bd2ffdb

    • SHA1

      35274344ea6e33ebe0dfa97e9a0aa3d72c6bf2ba

    • SHA256

      e3f01a05abe2a91cf891bb7f0f2dae5b2a409710ba6af9aaab63ab67d413a46c

    • SHA512

      765d9abbf4dc49470607fcef6402d447cf6984622681a01fa7896e0f4c4efd0341f50b147f14cdea11cdf541da86782c5b5783f094c30d5935d9dc848ab047e2

    • SSDEEP

      6144:PjH17gWXRyMa2qZx/u1cPSOvkR2l8oUkUA98cwNZHIn2aTulM0c6ZADFIubVebpe:rVMKa2qX/k8YgU1cWin2p7GqG4p

    Score
    10/10
    modiloaderdiscoverytrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • Modiloader family

      modiloader

    • ModiLoader Second Stage

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks