Overview

overview

10

Static

static

1

Cfabaci_Signed_.exe

windows7-x64

10

Cfabaci_Signed_.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_d332b30a7b418766c6fe19d1329051af4a71ce2ea09ea8ea9bbbb222dd2a5658

  • Size

    446KB

  • Sample

    241221-2bg53askaj

  • MD5

    d58b483dbca2e5fe7c9f38187c751173

  • SHA1

    baf3270e02fbd0068a86f6b649c7caa886287b19

  • SHA256

    d332b30a7b418766c6fe19d1329051af4a71ce2ea09ea8ea9bbbb222dd2a5658

  • SHA512

    96a242e87a63616c30780b4dbec7d7f2739461521b5e3013d595177e1f33c602603d560be83c47be4074356e72e96260e5f1b9913442411caf23787f4ffafa4a

  • SSDEEP

    12288:mX2IPyoS4ByIDEErRrwdSXZMsiMPY6BITAKpQgYohrMeP:mmGRS4ByIokRrZXfNPY6GT+ohYeP

Score
10/10
modiloaderdiscoverytrojan

Malware Config

Targets

    • Target

      Cfabaci_Signed_.exe

    • Size

      960KB

    • MD5

      8b2b400d37fdc9121b819ebd2beef307

    • SHA1

      0d303ae14fbb7df8d07c2d24c0a2a66ff05eafc4

    • SHA256

      7a8468cf315b63bc201f82a3318b39481bba571fdc30b601728faa1bd048dffd

    • SHA512

      e1badcf19684a5e1162cdf5fc4939753c4dda1aaf0cbf47376370c31a13c2159abfb30f6ef12fe5b5f338bb29b2b74327ec5e71079ae780ecd1da54a2b72f5f8

    • SSDEEP

      12288:dY2jsH0s30vuwlPMSGUzoPLLJ3SSsD8O1sXNn5IusLZQ1O:dzjm02wKazmLF6s9V1Y

    Score
    10/10
    modiloaderdiscoverytrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • Modiloader family

      modiloader

    • ModiLoader First Stage

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks