General
-
Target
1773fd6f671f61872618d77522b05984_JaffaCakes118
-
Size
943KB
-
Sample
240627-zhd1wasclm
-
MD5
1773fd6f671f61872618d77522b05984
-
SHA1
910230f5d4a8e9e00c0d6e28e21306d82366f352
-
SHA256
bdd8a94d0e28e5daea5ffe7c309148d08d57d794b401528106abce4c162473f4
-
SHA512
bb8cd55d76a494fa950e4c66005df3afcba4542cb227e9d78ef4116bb5cd133f8cbbc3052d5892e21440fc036e5c6ee901d78c70066a1bebe806a824b41104cd
-
SSDEEP
24576:HUOwqJjzT2ARzw9ib6K3y5WMJVExIbqhaOPcfUzo+zH3dg:2Rc5iAoX8kY3dg
Malware Config
Targets
-
-
Target
1773fd6f671f61872618d77522b05984_JaffaCakes118
-
Size
943KB
-
MD5
1773fd6f671f61872618d77522b05984
-
SHA1
910230f5d4a8e9e00c0d6e28e21306d82366f352
-
SHA256
bdd8a94d0e28e5daea5ffe7c309148d08d57d794b401528106abce4c162473f4
-
SHA512
bb8cd55d76a494fa950e4c66005df3afcba4542cb227e9d78ef4116bb5cd133f8cbbc3052d5892e21440fc036e5c6ee901d78c70066a1bebe806a824b41104cd
-
SSDEEP
24576:HUOwqJjzT2ARzw9ib6K3y5WMJVExIbqhaOPcfUzo+zH3dg:2Rc5iAoX8kY3dg
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Identifies Wine through registry keys
Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
-
Checks whether UAC is enabled
-