Overview

overview

10

Static

static

10

959cf814a5...18.exe

windows7-x64

10

959cf814a5...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    959cf814a5036e7ce72e4b629c379721_JaffaCakes118

  • Size

    683KB

  • Sample

    241124-s2h1lswnbz

  • MD5

    959cf814a5036e7ce72e4b629c379721

  • SHA1

    6ea5ce3d99b10f1656e4e7781fa6b982b6caa282

  • SHA256

    063ae11f4291d5cd6c6173511b85b58a532bd692f6686080d8aa367ec43c9f1f

  • SHA512

    e77a0fb4e36b19e3f97924f28b543233a47c6d073b843c3c90d2762c63b0d98405a1f5de42b41e6dcbca6e43140709e96ebbf40d08b9feffba2a5ddd4c26faa4

  • SSDEEP

    12288:rmAL5TKme5vRProQj+JF0JugV0t9x8ArYxLL0GIsVOWv3uTZtK:a0sr5vRU/j0Axx8xNToWv3uTe

Score
10/10
modiloaderdiscoverytrojan

Malware Config

Targets

    • Target

      959cf814a5036e7ce72e4b629c379721_JaffaCakes118

    • Size

      683KB

    • MD5

      959cf814a5036e7ce72e4b629c379721

    • SHA1

      6ea5ce3d99b10f1656e4e7781fa6b982b6caa282

    • SHA256

      063ae11f4291d5cd6c6173511b85b58a532bd692f6686080d8aa367ec43c9f1f

    • SHA512

      e77a0fb4e36b19e3f97924f28b543233a47c6d073b843c3c90d2762c63b0d98405a1f5de42b41e6dcbca6e43140709e96ebbf40d08b9feffba2a5ddd4c26faa4

    • SSDEEP

      12288:rmAL5TKme5vRProQj+JF0JugV0t9x8ArYxLL0GIsVOWv3uTZtK:a0sr5vRU/j0Axx8xNToWv3uTe

    Score
    10/10
    modiloaderdiscoverytrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • Modiloader family

      modiloader

    • ModiLoader Second Stage

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks