General
-
Target
1b9a97c0e0b622411e59daca57e899df_JaffaCakes118
-
Size
713KB
-
Sample
240701-rj5afswclg
-
MD5
1b9a97c0e0b622411e59daca57e899df
-
SHA1
5c97b77b31b490ccb473f57bb0ac66f4d9e3be42
-
SHA256
374f55bb12c363b17cccb6799b96fa68235c3d4032b6db4d45a575ace0d5cb83
-
SHA512
488a0730d79e2220d1768f2a2a5d68cb37c72498c1cb864218e4a72853ba94d3c44cf13501c482b83fa20acaf828bee0c86fd90e3a7bc5f7a3773d06c4b114aa
-
SSDEEP
12288:RmcjJTzOidzRbroYj+JFwtuQF499lQAvYxLL0GIdI9Z1guTr9M:0Ip3dzRInjwkdlQlNOI9ZauThM
Behavioral task
behavioral1
Sample
1b9a97c0e0b622411e59daca57e899df_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
1b9a97c0e0b622411e59daca57e899df_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
1b9a97c0e0b622411e59daca57e899df_JaffaCakes118
-
Size
713KB
-
MD5
1b9a97c0e0b622411e59daca57e899df
-
SHA1
5c97b77b31b490ccb473f57bb0ac66f4d9e3be42
-
SHA256
374f55bb12c363b17cccb6799b96fa68235c3d4032b6db4d45a575ace0d5cb83
-
SHA512
488a0730d79e2220d1768f2a2a5d68cb37c72498c1cb864218e4a72853ba94d3c44cf13501c482b83fa20acaf828bee0c86fd90e3a7bc5f7a3773d06c4b114aa
-
SSDEEP
12288:RmcjJTzOidzRbroYj+JFwtuQF499lQAvYxLL0GIdI9Z1guTr9M:0Ip3dzRInjwkdlQlNOI9ZauThM
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Suspicious use of SetThreadContext
-