Overview

overview

10

Static

static

10

9470c46203...18.exe

windows7-x64

10

9470c46203...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9470c46203f63f523f99f48a7949258a_JaffaCakes118

  • Size

    730KB

  • Sample

    241124-ntc26sxpe1

  • MD5

    9470c46203f63f523f99f48a7949258a

  • SHA1

    a408900270a4d02888ad974b2e189bc81ebb1eca

  • SHA256

    06080fba3232579400a3e2b3d0e628de664c4b47f6fb3a5253f99bd8eda11742

  • SHA512

    bed7652c850513f7cf1b7106b1146999b1c689c826ecbad362908400ed2cefa3280f8f985b8a68933e9a3ccfc9072e87c97b442c37cf208554a8f490d96341ea

  • SSDEEP

    12288:+glx4CxSr1hKdOactGbPbo9Lb9zqT5flnyw1pra6iGR/TkaC:Vljx81hKdOalbPbo9H9Wryw11iGR/Tk5

Score
10/10
modiloaderdiscoverytrojan

Malware Config

Targets

    • Target

      9470c46203f63f523f99f48a7949258a_JaffaCakes118

    • Size

      730KB

    • MD5

      9470c46203f63f523f99f48a7949258a

    • SHA1

      a408900270a4d02888ad974b2e189bc81ebb1eca

    • SHA256

      06080fba3232579400a3e2b3d0e628de664c4b47f6fb3a5253f99bd8eda11742

    • SHA512

      bed7652c850513f7cf1b7106b1146999b1c689c826ecbad362908400ed2cefa3280f8f985b8a68933e9a3ccfc9072e87c97b442c37cf208554a8f490d96341ea

    • SSDEEP

      12288:+glx4CxSr1hKdOactGbPbo9Lb9zqT5flnyw1pra6iGR/TkaC:Vljx81hKdOalbPbo9H9Wryw11iGR/Tk5

    Score
    10/10
    modiloaderdiscoverytrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • Modiloader family

      modiloader

    • ModiLoader Second Stage

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks