Overview

overview

10

Static

static

3

JaffaCakes...b8.exe

windows7-x64

10

JaffaCakes...b8.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_16a8b1bd23698fbbb83183fc397e4fb8

  • Size

    26KB

  • Sample

    250123-ndv8taxray

  • MD5

    16a8b1bd23698fbbb83183fc397e4fb8

  • SHA1

    2423fc9d4623a72fbe7c7f171fae02c9f8d3578e

  • SHA256

    bd976d79b38b2ed9c9e8a0b09934c07b940ecf1f9de79e264d2ad7b6d5589793

  • SHA512

    4f2691b54dd066aaac65044594ac9be5c34c2056da65b564004c91788032cf508f1f78ab487ce5d27b5749c18c49a1705989d697e418a8866c2405dcde31aa7b

  • SSDEEP

    384:sKoA0iaVZAszu/RQ+mLyvXYu5+z0jkKYaevegsOzy2RdLLw7553XDnXoB7G:LoTHupC2/kgRFm7Te2XLwdRbXf

Score
10/10
modiloaderdiscoverytrojan

Malware Config

Targets

    • Target

      JaffaCakes118_16a8b1bd23698fbbb83183fc397e4fb8

    • Size

      26KB

    • MD5

      16a8b1bd23698fbbb83183fc397e4fb8

    • SHA1

      2423fc9d4623a72fbe7c7f171fae02c9f8d3578e

    • SHA256

      bd976d79b38b2ed9c9e8a0b09934c07b940ecf1f9de79e264d2ad7b6d5589793

    • SHA512

      4f2691b54dd066aaac65044594ac9be5c34c2056da65b564004c91788032cf508f1f78ab487ce5d27b5749c18c49a1705989d697e418a8866c2405dcde31aa7b

    • SSDEEP

      384:sKoA0iaVZAszu/RQ+mLyvXYu5+z0jkKYaevegsOzy2RdLLw7553XDnXoB7G:LoTHupC2/kgRFm7Te2XLwdRbXf

    Score
    10/10
    modiloaderdiscoverytrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • Modiloader family

      modiloader

    • ModiLoader Second Stage

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks