General
-
Target
JaffaCakes118_c6c33e30078c9577b66f92106906c75a
-
Size
48KB
-
Sample
250119-ntntnsvrdt
-
MD5
c6c33e30078c9577b66f92106906c75a
-
SHA1
cae6512fefe0c03e46930940647f169d4d2abd70
-
SHA256
2a321ca4cee795ed1a6dbdd4570bbb8a6edcf3fe6e3163db4d8f5c61a9a2b879
-
SHA512
738ced1b733c8229304b1dde073662b62606df26a94f957ce62c68fa4fa4710c73edf7b20d579b2f2e2dff77c0df9e299aded05524e9d46719f16fa8817d8f88
-
SSDEEP
768:111qkE/N4jSpYxgcEIrhyQvYP1h3BtB16YYmfnVZT4T2eWHMTo1LCDFgX8m0qArF:P1qkE/h221fQQ8oVZT+WHSoJ0YTQ1
Malware Config
Targets
-
-
Target
JaffaCakes118_c6c33e30078c9577b66f92106906c75a
-
Size
48KB
-
MD5
c6c33e30078c9577b66f92106906c75a
-
SHA1
cae6512fefe0c03e46930940647f169d4d2abd70
-
SHA256
2a321ca4cee795ed1a6dbdd4570bbb8a6edcf3fe6e3163db4d8f5c61a9a2b879
-
SHA512
738ced1b733c8229304b1dde073662b62606df26a94f957ce62c68fa4fa4710c73edf7b20d579b2f2e2dff77c0df9e299aded05524e9d46719f16fa8817d8f88
-
SSDEEP
768:111qkE/N4jSpYxgcEIrhyQvYP1h3BtB16YYmfnVZT4T2eWHMTo1LCDFgX8m0qArF:P1qkE/h221fQQ8oVZT+WHSoJ0YTQ1
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
Modiloader family
-
ModiLoader Second Stage
-
Suspicious use of SetThreadContext
-