Overview

overview

10

Static

static

3

c5b0b84c15...18.exe

windows7-x64

10

c5b0b84c15...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c5b0b84c15840d28de9d8b062c48fa75_JaffaCakes118

  • Size

    393KB

  • Sample

    241205-d25r2ssndr

  • MD5

    c5b0b84c15840d28de9d8b062c48fa75

  • SHA1

    1a6a831fd90e147dfccaf036016f5cb1dce0cee0

  • SHA256

    d2e3c6d63d5504ddc0847b727cee9fbbac811d0a5195765349eaa51f7b7086f4

  • SHA512

    6e1d70ef6820c3e34f84eeb7ee7461a65196c6483f957237454d2a04474d8f3d51e553be037415cfbfadf19b95678c7652f4de59848afca4bb1d3e8ad5337413

  • SSDEEP

    6144:2+cdsMVwu53/XlGki1SxgjGddFHTow5ZfqnGm3Aa/RbJBymQu4pD9OEU4:w1G31t27sOyGVYRbrCu4ppw4

Score
10/10
modiloaderdiscoverytrojan

Malware Config

Targets

    • Target

      c5b0b84c15840d28de9d8b062c48fa75_JaffaCakes118

    • Size

      393KB

    • MD5

      c5b0b84c15840d28de9d8b062c48fa75

    • SHA1

      1a6a831fd90e147dfccaf036016f5cb1dce0cee0

    • SHA256

      d2e3c6d63d5504ddc0847b727cee9fbbac811d0a5195765349eaa51f7b7086f4

    • SHA512

      6e1d70ef6820c3e34f84eeb7ee7461a65196c6483f957237454d2a04474d8f3d51e553be037415cfbfadf19b95678c7652f4de59848afca4bb1d3e8ad5337413

    • SSDEEP

      6144:2+cdsMVwu53/XlGki1SxgjGddFHTow5ZfqnGm3Aa/RbJBymQu4pD9OEU4:w1G31t27sOyGVYRbrCu4ppw4

    Score
    10/10
    modiloaderdiscoverytrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • Modiloader family

      modiloader

    • ModiLoader Second Stage

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks