Overview

overview

10

Static

static

3

crack/gifan.exe

windows7-x64

10

crack/gifan.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ddaf46f1591e1598b2f05bb5d6a62d7b_JaffaCakes118

  • Size

    1.1MB

  • Sample

    241210-jgf6vayph1

  • MD5

    ddaf46f1591e1598b2f05bb5d6a62d7b

  • SHA1

    485797608840024100e077fd255c4e63d8e7138d

  • SHA256

    b534c9655a1c4b7b165172633ce729f7ad58eb58375c8c0c48938ac26eaaa923

  • SHA512

    9849b7032765fde5ffd96639e78d80e78ea57b364d283b2a89ac2528582c1b679e38e3b124c89d902e1c4001124e9c6c418ee7cda9a6daa4442ffbc3572d9bc5

  • SSDEEP

    24576:6ztHI7Bti9tKR+9DC0puVXCPhVzaC57TF94ObiaDI9FRaPm5:62f47NCVXebn7TFhrI9FRaPm5

Score
10/10
modiloaderdiscoverytrojan

Malware Config

Targets

    • Target

      crack/gifan.exe

    • Size

      621KB

    • MD5

      1861c3dbf4d9557635f63c8d896d15bf

    • SHA1

      5939f1c118b40f57a301ad7c3ca5183f03f11783

    • SHA256

      5da37ec64e49dca9b98628e8712b51b7b93f46850fe33558b5867550f12d2330

    • SHA512

      a0f41dc28ebd50a2fe4cfa4164d029e92d0524519ee2dd1364340c986d21a2f8ed79a1838b121a6cdab5c32aa450052684ca9fd9fa090aa8036220dfa98f3f07

    • SSDEEP

      12288:XERO/69cN0jtJjzsKb6qNfOUoTEpmf/s9texbLTeLjSYHa4G:XC9cGjjVNmdTEpm3gtexbLTfYHK

    Score
    10/10
    modiloaderdiscoverytrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • Modiloader family

      modiloader

    • ModiLoader First Stage

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks