General
-
Target
1d0da666095827a4b868b409e87d9b3c_JaffaCakes118
-
Size
645KB
-
Sample
240702-af2ayssbrp
-
MD5
1d0da666095827a4b868b409e87d9b3c
-
SHA1
fbec468b089de0fb28562eacba9fff71a00bf260
-
SHA256
4d10a87af89c89f5c23687c08921d7b3d677ee426214a566514cc4d89406f789
-
SHA512
5c5f5c36ef746477ec8acbb8dad30bd5cb5a8d4350b79c5688b052f23e6a8b1784846232f126eda06d80acab494cad4443751741d74fac4ebec646d37b5c96f9
-
SSDEEP
12288:IAQmxHhr0lOf6oChhnMPl4cDFM6Sz0roJWnE+QCgvd3XE3Dcgb+7R+:IN+Hhr0lOxYMqcDeNJuEB5hyDcgCY
Static task
static1
Behavioral task
behavioral1
Sample
1d0da666095827a4b868b409e87d9b3c_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
1d0da666095827a4b868b409e87d9b3c_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
1d0da666095827a4b868b409e87d9b3c_JaffaCakes118
-
Size
645KB
-
MD5
1d0da666095827a4b868b409e87d9b3c
-
SHA1
fbec468b089de0fb28562eacba9fff71a00bf260
-
SHA256
4d10a87af89c89f5c23687c08921d7b3d677ee426214a566514cc4d89406f789
-
SHA512
5c5f5c36ef746477ec8acbb8dad30bd5cb5a8d4350b79c5688b052f23e6a8b1784846232f126eda06d80acab494cad4443751741d74fac4ebec646d37b5c96f9
-
SSDEEP
12288:IAQmxHhr0lOf6oChhnMPl4cDFM6Sz0roJWnE+QCgvd3XE3Dcgb+7R+:IN+Hhr0lOxYMqcDeNJuEB5hyDcgCY
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Suspicious use of SetThreadContext
-