Overview

overview

10

Static

static

10

bcbc26f767...18.exe

windows7-x64

10

bcbc26f767...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bcbc26f767b5cfa00b9db761ecea3314_JaffaCakes118

  • Size

    28KB

  • Sample

    241203-lcv6bavkdl

  • MD5

    bcbc26f767b5cfa00b9db761ecea3314

  • SHA1

    c34ace4179b4374278e96045ad9b02ccc96f45ac

  • SHA256

    599ebde2d698c0db80fae6a1a80e4260996924ec9a1233f387dcd61587ed6bc0

  • SHA512

    84b931e278be14afe12a39f16b4df4cadd8304fc71fa8b56ecbe82dca5da15ee157ff303206cce3a3f0209fc00bca03d6b55c4b1789faa0c9ccb9a106addabaf

  • SSDEEP

    768:j+3PwFwreBECRGWOYh47b+4Nek/cSBX/8oDOiVGWyU:jmvrmGee7tek/Dk8

Score
10/10
modiloaderdiscoverytrojanupx

Malware Config

Targets

    • Target

      bcbc26f767b5cfa00b9db761ecea3314_JaffaCakes118

    • Size

      28KB

    • MD5

      bcbc26f767b5cfa00b9db761ecea3314

    • SHA1

      c34ace4179b4374278e96045ad9b02ccc96f45ac

    • SHA256

      599ebde2d698c0db80fae6a1a80e4260996924ec9a1233f387dcd61587ed6bc0

    • SHA512

      84b931e278be14afe12a39f16b4df4cadd8304fc71fa8b56ecbe82dca5da15ee157ff303206cce3a3f0209fc00bca03d6b55c4b1789faa0c9ccb9a106addabaf

    • SSDEEP

      768:j+3PwFwreBECRGWOYh47b+4Nek/cSBX/8oDOiVGWyU:jmvrmGee7tek/Dk8

    Score
    10/10
    modiloaderdiscoverytrojanupx

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • Modiloader family

      modiloader

    • ModiLoader Second Stage

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks