General
-
Target
1a26a134946f6f3bcc62ec7a0b139f3c_JaffaCakes118
-
Size
68KB
-
Sample
240628-pv8e5szdmc
-
MD5
1a26a134946f6f3bcc62ec7a0b139f3c
-
SHA1
7a6fe4fa1878eed2a55d8b7ee2fca5ee423ec771
-
SHA256
cafc7143efabe25df6640c29fa90fbd1ea9dfb2266ccae4bb143900b5b648579
-
SHA512
2805814ebd708acd8cc1b1ea3caf2affe99cd29e59ec669f5348a2a1a277a22151a45331b640d98373cd38ab1f657704f055baae5b75579628781ceb41ceeb2f
-
SSDEEP
1536:kJ9oDIpc//////tBLaPQQfLGMKmkLjewprhQcxUYRRZdI1wB:kDo8pc//////tQDLvKmIjewprdR0A
Malware Config
Targets
-
-
Target
1a26a134946f6f3bcc62ec7a0b139f3c_JaffaCakes118
-
Size
68KB
-
MD5
1a26a134946f6f3bcc62ec7a0b139f3c
-
SHA1
7a6fe4fa1878eed2a55d8b7ee2fca5ee423ec771
-
SHA256
cafc7143efabe25df6640c29fa90fbd1ea9dfb2266ccae4bb143900b5b648579
-
SHA512
2805814ebd708acd8cc1b1ea3caf2affe99cd29e59ec669f5348a2a1a277a22151a45331b640d98373cd38ab1f657704f055baae5b75579628781ceb41ceeb2f
-
SSDEEP
1536:kJ9oDIpc//////tBLaPQQfLGMKmkLjewprhQcxUYRRZdI1wB:kDo8pc//////tQDLvKmIjewprdR0A
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Loads dropped DLL
-
Suspicious use of SetThreadContext
-