General
-
Target
1bb069fd8b2eaefcb9ca39e90b84b830_JaffaCakes118
-
Size
40KB
-
Sample
240701-r2pygs1bkm
-
MD5
1bb069fd8b2eaefcb9ca39e90b84b830
-
SHA1
b9b30aec13685838ea3f9adfc509bec4400b89e6
-
SHA256
33758f96f50e17a151c1c8ccad69cb6764d501aca83bb5665d629bb7dc7c47fe
-
SHA512
a22ccdd0c2a363f376a22f1cebfb886026134675e449c71f9ebf76a82b87b4cf22aa243595b2630932399f2ad46e6e529cde418775df377a59f2340487817c20
-
SSDEEP
768:xwwyxQouEWjSHD23fbU50aaaxwdYzsRPw8rt9pAUN4ZWM1i2Gs1y:M4jqi5axwdrPpJNdMIHs1y
Behavioral task
behavioral1
Sample
1bb069fd8b2eaefcb9ca39e90b84b830_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
1bb069fd8b2eaefcb9ca39e90b84b830_JaffaCakes118.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
1bb069fd8b2eaefcb9ca39e90b84b830_JaffaCakes118
-
Size
40KB
-
MD5
1bb069fd8b2eaefcb9ca39e90b84b830
-
SHA1
b9b30aec13685838ea3f9adfc509bec4400b89e6
-
SHA256
33758f96f50e17a151c1c8ccad69cb6764d501aca83bb5665d629bb7dc7c47fe
-
SHA512
a22ccdd0c2a363f376a22f1cebfb886026134675e449c71f9ebf76a82b87b4cf22aa243595b2630932399f2ad46e6e529cde418775df377a59f2340487817c20
-
SSDEEP
768:xwwyxQouEWjSHD23fbU50aaaxwdYzsRPw8rt9pAUN4ZWM1i2Gs1y:M4jqi5axwdrPpJNdMIHs1y
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Suspicious use of SetThreadContext
-