modiloader | 858aeeb253d46f27f371b704614ca9d152cdf687781e8ce7ae0ecc65261f1b61 | Triage

Submit
Reports

Overview

overview

Static

static

3

17681f41da...18.exe

windows7-x64

17681f41da...18.exe

windows10-2004-x64

Sharing

General

Target

17681f41da5f8680c9becbaf8276e882_JaffaCakes118
Size

584KB
Sample

240627-y7vt9a1fmj
MD5

17681f41da5f8680c9becbaf8276e882
SHA1

dfb2b82d5e6aa24776383aa8e9b88cf1f2d1bfb6
SHA256

858aeeb253d46f27f371b704614ca9d152cdf687781e8ce7ae0ecc65261f1b61
SHA512

8d229dd236ad9018b7690eabb7fd9db17598cdad1a5c2128ebf7c5ad276564dcd39fe8bf4989dba7649fe0dca988428ce709b537fc3edd9ce7deb8e2736f09b6
SSDEEP

12288:OW1K1f59s0jV/phEh+/twMmUgFfbqT6e2kS/F3Z4mxxXHI0RNyLnsObR:O8Kl595jVRqHDJquEEQmXNbyjsgR

Score

10^/10

modiloader trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

17681f41da5f8680c9becbaf8276e882_JaffaCakes118.exe

Resource

win7-20240221-en

modiloader trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

17681f41da5f8680c9becbaf8276e882_JaffaCakes118.exe

Resource

win10v2004-20240226-en

modiloader trojan

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  17681f41da5f8680c9becbaf8276e882_JaffaCakes118
- Size
  
  584KB
- MD5
  
  17681f41da5f8680c9becbaf8276e882
- SHA1
  
  dfb2b82d5e6aa24776383aa8e9b88cf1f2d1bfb6
- SHA256
  
  858aeeb253d46f27f371b704614ca9d152cdf687781e8ce7ae0ecc65261f1b61
- SHA512
  
  8d229dd236ad9018b7690eabb7fd9db17598cdad1a5c2128ebf7c5ad276564dcd39fe8bf4989dba7649fe0dca988428ce709b537fc3edd9ce7deb8e2736f09b6
- SSDEEP
  
  12288:OW1K1f59s0jV/phEh+/twMmUgFfbqT6e2kS/F3Z4mxxXHI0RNyLnsObR:O8Kl595jVRqHDJquEEQmXNbyjsgR
Score

10^/10

modiloader trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader Second Stage
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

modiloadertrojan

behavioral2

modiloadertrojan

© 2018-2024

Terms | Privacy