General

  • Target

    JaffaCakes118_586fb5e9b4698f55576765c71462a931

  • Size

    98KB

  • Sample

    250115-qy5zvstqhs

  • MD5

    586fb5e9b4698f55576765c71462a931

  • SHA1

    25703097b9270ccfc9655e4f70e1d2aa44386128

  • SHA256

    78b0f93693793b534c1214187b2dec497941b076b74c064e1d293d8e941981d9

  • SHA512

    867dc48f7b1ba683c85f8c5513540d5ecc607462a9189207d2de5867a8047a8832681c6ac20bbd9b93c556b903488700cd16d45efe4bbf8a0b708b5a1803a783

  • SSDEEP

    3072:m3quWyYv7rUcLzET/Yse9KZB7MlSJeOMkPCZ:GWpz8Ase9MB7YS4TkP

Malware Config

Targets

    • Target

      JaffaCakes118_586fb5e9b4698f55576765c71462a931

    • Size

      98KB

    • MD5

      586fb5e9b4698f55576765c71462a931

    • SHA1

      25703097b9270ccfc9655e4f70e1d2aa44386128

    • SHA256

      78b0f93693793b534c1214187b2dec497941b076b74c064e1d293d8e941981d9

    • SHA512

      867dc48f7b1ba683c85f8c5513540d5ecc607462a9189207d2de5867a8047a8832681c6ac20bbd9b93c556b903488700cd16d45efe4bbf8a0b708b5a1803a783

    • SSDEEP

      3072:m3quWyYv7rUcLzET/Yse9KZB7MlSJeOMkPCZ:GWpz8Ase9MB7YS4TkP

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

    • Modiloader family

    • ModiLoader Second Stage

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks