General

  • Target

    JaffaCakes118_0181b00bbdbbec95cc5e33b082165dd88ba66844402429f74e1f9c1f30f4c8bc

  • Size

    441KB

  • Sample

    241230-yacmeaxqb1

  • MD5

    e6be565cf1cc4e941c0a94e3b3a8bff0

  • SHA1

    7c1b1d3e9aebee1a5022aa1dbdd24c0b57ea7db2

  • SHA256

    0181b00bbdbbec95cc5e33b082165dd88ba66844402429f74e1f9c1f30f4c8bc

  • SHA512

    4d47bd9763f171084747dca6b8531bdc2c9fa07da909b8a60411bf728acba5fb03b6e942318a495acd7d7344ff2aa1290e97ee166541357ace604ca4d47616f8

  • SSDEEP

    12288:fwwx+JO23oE1NFbNim2dg9Tmo1yQKuCDassl:Yw8JO2LzdNP2ipjbCDab

Malware Config

Targets

    • Target

      Document.exe

    • Size

      815KB

    • MD5

      2099ced146bc62bad4277e87e4e6b871

    • SHA1

      6dc0251d79ed48fb7a1868376832c3251773a07a

    • SHA256

      41ff8d49d11ea8b822e218dc07c1ad06769ae52912d10706412eeac3144a950a

    • SHA512

      d0f08ec9c734d727e36b16b70a4ee2475611782c250c507eaa30d8d4044f2c74cf20b2320b350355d6366c125ea7030ae43bab4263e00efc6c9f7dac0037eed1

    • SSDEEP

      12288:km+S04oKCCg7GyrwiXQVtTRsVFjYIZATZ0Br5iomW6pbZe:HXivCg7hwmQ7uVhl+Z0t5wpbZe

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

    • Modiloader family

    • ModiLoader Second Stage

MITRE ATT&CK Enterprise v15

Tasks