modiloader | 917095991c2ca1b3ff6d99b767af132fef0e44b32b585e87ed18d5218fabd56a | Triage

Submit
Reports

Overview

overview

Static

static

3

165a9d2947...18.exe

windows7-x64

165a9d2947...18.exe

windows10-2004-x64

3

Sharing

General

Target

165a9d29473d2da87abe606de8fb5d31_JaffaCakes118
Size

139KB
Sample

240627-ryggyawakf
MD5

165a9d29473d2da87abe606de8fb5d31
SHA1

920631db6cc8f254fa475869aa13afcdc8bad579
SHA256

917095991c2ca1b3ff6d99b767af132fef0e44b32b585e87ed18d5218fabd56a
SHA512

92073fa91654747632cd0703ef6b23e6d6bbdf18de1af289b490cc420dc6b76da466564085843603b2361e84c871315c159a6c6385dc39df77880d7315dc0e94
SSDEEP

3072:3V76+yE352t/iHBLAOmgt8XWiWM3xu3L6HYhayZrRg8K1Wj6R:FmDEp2mL98XGmxmLPAyZrRg8K1WuR

Score

10^/10

modiloader trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

165a9d29473d2da87abe606de8fb5d31_JaffaCakes118.exe

Resource

win7-20240221-en

modiloader trojan upx

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

165a9d29473d2da87abe606de8fb5d31_JaffaCakes118.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

1 signatures

150 seconds

Malware Config

Targets

- Target
  
  165a9d29473d2da87abe606de8fb5d31_JaffaCakes118
- Size
  
  139KB
- MD5
  
  165a9d29473d2da87abe606de8fb5d31
- SHA1
  
  920631db6cc8f254fa475869aa13afcdc8bad579
- SHA256
  
  917095991c2ca1b3ff6d99b767af132fef0e44b32b585e87ed18d5218fabd56a
- SHA512
  
  92073fa91654747632cd0703ef6b23e6d6bbdf18de1af289b490cc420dc6b76da466564085843603b2361e84c871315c159a6c6385dc39df77880d7315dc0e94
- SSDEEP
  
  3072:3V76+yE352t/iHBLAOmgt8XWiWM3xu3L6HYhayZrRg8K1Wj6R:FmDEp2mL98XGmxmLPAyZrRg8K1WuR
Score

10^/10

modiloader trojan upx
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader Second Stage
- Deletes itself
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

modiloadertrojanupx

behavioral2

© 2018-2024

Terms | Privacy