Overview

overview

10

Static

static

10

LiQQ...��.htm

windows7-x64

3

LiQQ...��.htm

windows10-2004-x64

3

LiQQ...��.exe

windows7-x64

10

LiQQ...��.exe

windows10-2004-x64

10

LiQQ...qq.vbs

windows7-x64

1

LiQQ...qq.vbs

windows10-2004-x64

1

LiQQ...��.url

windows7-x64

1

LiQQ...��.url

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    e8f8a8237cf663f3a2afdb6b45d5d418_JaffaCakes118

  • Size

    453KB

  • MD5

    e8f8a8237cf663f3a2afdb6b45d5d418

  • SHA1

    0b9da9813e79f06cc7d8f67e4905326889390eb3

  • SHA256

    c58859e13bb3afe16416c530f444066a136c221811403dcddde1595adbcfd1d9

  • SHA512

    fb455f562afd71ddc3dc8bbd50054556bd2543b2458911af526df8ab14dd32c3f87ff0b6c9a2ce54ef05c60bf9c60115c4975abaea1396fa6edbffbf88e5ee30

  • SSDEEP

    12288:l+P3pEky87C3RxuRna2/GxtSJLmtdnmjQbF8rW:sPZEkJgR8Rna2/GxElmtdnnt

Score
10/10
modiloader

Malware Config

Signatures

  • ModiLoader Second Stage 1 IoCs
  • Modiloader family
    modiloader
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • e8f8a8237cf663f3a2afdb6b45d5d418_JaffaCakes118
    .zip
  • LiQQ/##ע##.txt
  • LiQQ/77169.orgʹð˵.txt
  • LiQQ/77169.org˵.htm
    .html
  • LiQQ/LiQQ.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • LiQQ/qq.asp
    .vbs
  • LiQQ/˵.txt
  • LiQQ/ĺڿͬ.url