Overview

overview

10

Static

static

10

e77c6710d9...18.exe

windows7-x64

10

e77c6710d9...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e77c6710d946c6a38cb68147659ea595_JaffaCakes118

  • Size

    271KB

  • Sample

    241212-v3c7vstkcn

  • MD5

    e77c6710d946c6a38cb68147659ea595

  • SHA1

    28a52119bfc674f54cc1842269a6bd48e003965f

  • SHA256

    1dca80414ebcde896a719010f88f9947b7a4fc437768db758f9fefe774e6e070

  • SHA512

    ab312352bf72e95a5176396e92bdb1a588d42dfdc9ade9b933c76b96ed53ce2f9f34cde08750550b2776d451008ea56ff4ac37c55c1020eebf62084f20152ad7

  • SSDEEP

    6144:GGP77xS2Vp21hLUrwTBoDh53LlypcCJJvHW:lD7xS2VpaQwTaYbJJvHW

Score
10/10
modiloaderdiscoveryevasiontrojan

Malware Config

Targets

    • Target

      e77c6710d946c6a38cb68147659ea595_JaffaCakes118

    • Size

      271KB

    • MD5

      e77c6710d946c6a38cb68147659ea595

    • SHA1

      28a52119bfc674f54cc1842269a6bd48e003965f

    • SHA256

      1dca80414ebcde896a719010f88f9947b7a4fc437768db758f9fefe774e6e070

    • SHA512

      ab312352bf72e95a5176396e92bdb1a588d42dfdc9ade9b933c76b96ed53ce2f9f34cde08750550b2776d451008ea56ff4ac37c55c1020eebf62084f20152ad7

    • SSDEEP

      6144:GGP77xS2Vp21hLUrwTBoDh53LlypcCJJvHW:lD7xS2VpaQwTaYbJJvHW

    Score
    10/10
    modiloaderdiscoveryevasiontrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • Modiloader family

      modiloader

    • UAC bypass

      evasiontrojan

    • ModiLoader Second Stage

    • Loads dropped DLL

    • Checks whether UAC is enabled

      evasiontrojan
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks