General
-
Target
JaffaCakes118_0c2fbc0c25bc77a758969a5c748d5ff7
-
Size
264KB
-
Sample
250122-kztqbsyqhl
-
MD5
0c2fbc0c25bc77a758969a5c748d5ff7
-
SHA1
be7707ba22645175690a8b9b5d2726877a058d70
-
SHA256
bcce5a0c16a4f3df887b239f89ebbd15e1e9e1f7a89f2efc5957a6698ecfb9f3
-
SHA512
2b81ac96cb06b6e15c8b318b108509da02d6314cc1bd04bc29b2968660a0188b8302f6919577b89ed1437545ef7e25ca2dd9ab1d8f240f2c2fad7c54c833e6f1
-
SSDEEP
6144:Oj0T5W01GYl5xnjsJ6jV/phkfBAUOMC1/trwqNqyqtnH6aO4V:FT5X1f59s0jV/phEh+/tvNHQnHHV
Malware Config
Targets
-
-
Target
JaffaCakes118_0c2fbc0c25bc77a758969a5c748d5ff7
-
Size
264KB
-
MD5
0c2fbc0c25bc77a758969a5c748d5ff7
-
SHA1
be7707ba22645175690a8b9b5d2726877a058d70
-
SHA256
bcce5a0c16a4f3df887b239f89ebbd15e1e9e1f7a89f2efc5957a6698ecfb9f3
-
SHA512
2b81ac96cb06b6e15c8b318b108509da02d6314cc1bd04bc29b2968660a0188b8302f6919577b89ed1437545ef7e25ca2dd9ab1d8f240f2c2fad7c54c833e6f1
-
SSDEEP
6144:Oj0T5W01GYl5xnjsJ6jV/phkfBAUOMC1/trwqNqyqtnH6aO4V:FT5X1f59s0jV/phEh+/tvNHQnHHV
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
Modiloader family
-
ModiLoader Second Stage
-
Suspicious use of SetThreadContext
-