General
-
Target
JaffaCakes118_55178393d565d7bee546698664723c3f
-
Size
2.1MB
-
Sample
250115-m5jhnasngm
-
MD5
55178393d565d7bee546698664723c3f
-
SHA1
a4452625eaae68ba05cc509f1bb63c1ce53c42cc
-
SHA256
76af0dd0865883dab92125bdcdba0790e71075bfc8d67f72ad22fba2fb91d24b
-
SHA512
aae8e45f4d89d662e094a7e30eb889083e1086c35efc0180ab299c16b66ccc7ac38391f1de08019f768ddb4cae55ddd6b2aee70208d66ac41b76021344e7d795
-
SSDEEP
49152:sbxUoiD28wn5VOpfLymB2seKdqdi5VoAUHiQUIy2LsvM:UyK8w5VOpfLyW2sNq3hxUZAsE
Malware Config
Targets
-
-
Target
JaffaCakes118_55178393d565d7bee546698664723c3f
-
Size
2.1MB
-
MD5
55178393d565d7bee546698664723c3f
-
SHA1
a4452625eaae68ba05cc509f1bb63c1ce53c42cc
-
SHA256
76af0dd0865883dab92125bdcdba0790e71075bfc8d67f72ad22fba2fb91d24b
-
SHA512
aae8e45f4d89d662e094a7e30eb889083e1086c35efc0180ab299c16b66ccc7ac38391f1de08019f768ddb4cae55ddd6b2aee70208d66ac41b76021344e7d795
-
SSDEEP
49152:sbxUoiD28wn5VOpfLymB2seKdqdi5VoAUHiQUIy2LsvM:UyK8w5VOpfLyW2sNq3hxUZAsE
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
Modiloader family
-
ModiLoader First Stage
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-