General
-
Target
261b0151af5723bcba3cd7127fa18f64_JaffaCakes118
-
Size
552KB
-
Sample
240704-yxqgsawgqp
-
MD5
261b0151af5723bcba3cd7127fa18f64
-
SHA1
ffbe98b013d32694bc43553c8d1538930aedc751
-
SHA256
efb39b0e36f7e7ef1094eca4eeac8bf70843f750e55b15e7ac0adcd6e5fa5b95
-
SHA512
46d542c904269c9085a7a0b3f09d410ca809d865aa832139ad72c67e629bc9fcb680b2c239e20b792b5de5cf00fe74092210af711d7f102f4f9f10f7daff992f
-
SSDEEP
12288:CXLb86petEsayw+0wtKaOsi/5gJS20Sm:wX81t11VOR/
Malware Config
Targets
-
-
Target
261b0151af5723bcba3cd7127fa18f64_JaffaCakes118
-
Size
552KB
-
MD5
261b0151af5723bcba3cd7127fa18f64
-
SHA1
ffbe98b013d32694bc43553c8d1538930aedc751
-
SHA256
efb39b0e36f7e7ef1094eca4eeac8bf70843f750e55b15e7ac0adcd6e5fa5b95
-
SHA512
46d542c904269c9085a7a0b3f09d410ca809d865aa832139ad72c67e629bc9fcb680b2c239e20b792b5de5cf00fe74092210af711d7f102f4f9f10f7daff992f
-
SSDEEP
12288:CXLb86petEsayw+0wtKaOsi/5gJS20Sm:wX81t11VOR/
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-