General
-
Target
1e5707edc2314748ad49c6b845742c7a_JaffaCakes118
-
Size
131KB
-
Sample
240702-hfjd5s1arb
-
MD5
1e5707edc2314748ad49c6b845742c7a
-
SHA1
d112591f937d0f41f03f368b82d63e57b4713305
-
SHA256
978011aba933c67beba505ea2e6ce3fffb7ff9a69522f00803010f92b9b24f43
-
SHA512
5fa01ab6c9f78fc02d4973ab615a8c6fdf14e0d1bfe3ec8d785a823b69cc301d175b292614d4f7ba02f612aa00c5259d799398f85a2da22218fd3b716e70e62b
-
SSDEEP
3072:Jh8YRHE5GsBZCu9MxOLMJT97BB1EL5mrBmC:v8C0GAZCvac5S13C
Static task
static1
Behavioral task
behavioral1
Sample
1e5707edc2314748ad49c6b845742c7a_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
1e5707edc2314748ad49c6b845742c7a_JaffaCakes118.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
1e5707edc2314748ad49c6b845742c7a_JaffaCakes118
-
Size
131KB
-
MD5
1e5707edc2314748ad49c6b845742c7a
-
SHA1
d112591f937d0f41f03f368b82d63e57b4713305
-
SHA256
978011aba933c67beba505ea2e6ce3fffb7ff9a69522f00803010f92b9b24f43
-
SHA512
5fa01ab6c9f78fc02d4973ab615a8c6fdf14e0d1bfe3ec8d785a823b69cc301d175b292614d4f7ba02f612aa00c5259d799398f85a2da22218fd3b716e70e62b
-
SSDEEP
3072:Jh8YRHE5GsBZCu9MxOLMJT97BB1EL5mrBmC:v8C0GAZCvac5S13C
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Suspicious use of SetThreadContext
-