Overview

overview

10

Static

static

10

JaffaCakes...2f.exe

windows7-x64

10

JaffaCakes...2f.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_7a94981dc00b6dbe62a78544e350472f

  • Size

    106KB

  • Sample

    250104-th6g8swnfs

  • MD5

    7a94981dc00b6dbe62a78544e350472f

  • SHA1

    c77b83fa145c88c25b564f310974afc5edfd72f6

  • SHA256

    fbe2a044e71a3b19dd7ff92d0d8ed83ceeeb555d3b3f488d4583f09bda51f44a

  • SHA512

    94534fac3d9d6b30e79c394f6ccfc51bbf4a82f9cf7246f5dfe95729a10591703858a3782e294860c884575a6be717035386531f9dedb1b345247d888380ce9e

  • SSDEEP

    3072:6qH7TxlGJ/lRD7qjWqMkKCqkS4wFQU6j+I4tAIsV:HH3bgqCqnKcS4gQcIMLsV

Score
10/10
modiloaderdiscoverytrojan

Malware Config

Targets

    • Target

      JaffaCakes118_7a94981dc00b6dbe62a78544e350472f

    • Size

      106KB

    • MD5

      7a94981dc00b6dbe62a78544e350472f

    • SHA1

      c77b83fa145c88c25b564f310974afc5edfd72f6

    • SHA256

      fbe2a044e71a3b19dd7ff92d0d8ed83ceeeb555d3b3f488d4583f09bda51f44a

    • SHA512

      94534fac3d9d6b30e79c394f6ccfc51bbf4a82f9cf7246f5dfe95729a10591703858a3782e294860c884575a6be717035386531f9dedb1b345247d888380ce9e

    • SSDEEP

      3072:6qH7TxlGJ/lRD7qjWqMkKCqkS4wFQU6j+I4tAIsV:HH3bgqCqnKcS4gQcIMLsV

    Score
    10/10
    modiloaderdiscoverytrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • Modiloader family

      modiloader

    • ModiLoader Second Stage

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks