General

  • Target

    cc67a023951e8052b745474313f1ae32_JaffaCakes118

  • Size

    238KB

  • Sample

    241206-l24traxqap

  • MD5

    cc67a023951e8052b745474313f1ae32

  • SHA1

    786d7e7e1a0d28950a4366fdef9497cc4ae38d0d

  • SHA256

    ed4336ebc814a516a87a96e284cb09b056a87b4303ca5f7eee03e631371ea9d8

  • SHA512

    5e5c774cb10f3c34a81f0c5921cb38b1917ae4043dfc0e50e287c61ce4ac9aa28c56dd1558f4e86a393cae5846d7a4ddb1fa2c658361c7398e19c51d8ea89e06

  • SSDEEP

    3072:mc/c5TSQz8eKG1pdc6dg/3k6Jny3j8TU9uuZmVIJMcF6GyKrdrnwL+:m1hB/Rdg/U6JnyAT9uBJTdEL+

Malware Config

Targets

    • Target

      cc67a023951e8052b745474313f1ae32_JaffaCakes118

    • Size

      238KB

    • MD5

      cc67a023951e8052b745474313f1ae32

    • SHA1

      786d7e7e1a0d28950a4366fdef9497cc4ae38d0d

    • SHA256

      ed4336ebc814a516a87a96e284cb09b056a87b4303ca5f7eee03e631371ea9d8

    • SHA512

      5e5c774cb10f3c34a81f0c5921cb38b1917ae4043dfc0e50e287c61ce4ac9aa28c56dd1558f4e86a393cae5846d7a4ddb1fa2c658361c7398e19c51d8ea89e06

    • SSDEEP

      3072:mc/c5TSQz8eKG1pdc6dg/3k6Jny3j8TU9uuZmVIJMcF6GyKrdrnwL+:m1hB/Rdg/U6JnyAT9uBJTdEL+

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

    • Modiloader family

    • UAC bypass

    • ModiLoader Second Stage

    • Loads dropped DLL

    • Checks whether UAC is enabled

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.