Overview

overview

10

Static

static

10

e3d6e662b5...18.exe

windows7-x64

10

e3d6e662b5...18.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e3d6e662b5746fb74569ae0e3a7c93f5_JaffaCakes118

  • Size

    715KB

  • Sample

    241212-al32qsyjak

  • MD5

    e3d6e662b5746fb74569ae0e3a7c93f5

  • SHA1

    ca34078ab2bbf683ea98c98c8599091b1eb7b5e7

  • SHA256

    b04eec825441836d0579cde4dea8835ab54c4aa7102e77257e9af1aabfc3e6a3

  • SHA512

    21a2ea3ff61c85222d183d8367baadedb6698ce4d1119da87f52adc50ad566521f444d61549286e5a69187fe571308263bd1b95b6e76fee0505e71f6442e0a79

  • SSDEEP

    12288:hugl095nSxHqzsFb+QpbzsUn7TFLa0o3EzRPWhLT8zy:cy0XSxHesoQpHZNGk1aLT8

Score
10/10
modiloaderdiscoverytrojan

Malware Config

Targets

    • Target

      e3d6e662b5746fb74569ae0e3a7c93f5_JaffaCakes118

    • Size

      715KB

    • MD5

      e3d6e662b5746fb74569ae0e3a7c93f5

    • SHA1

      ca34078ab2bbf683ea98c98c8599091b1eb7b5e7

    • SHA256

      b04eec825441836d0579cde4dea8835ab54c4aa7102e77257e9af1aabfc3e6a3

    • SHA512

      21a2ea3ff61c85222d183d8367baadedb6698ce4d1119da87f52adc50ad566521f444d61549286e5a69187fe571308263bd1b95b6e76fee0505e71f6442e0a79

    • SSDEEP

      12288:hugl095nSxHqzsFb+QpbzsUn7TFLa0o3EzRPWhLT8zy:cy0XSxHesoQpHZNGk1aLT8

    Score
    10/10
    modiloaderdiscoverytrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • Modiloader family

      modiloader

    • ModiLoader Second Stage

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks