modiloader | 4f7717a566d89d50e2e12212dfd4e325489650185c19cf4db56b8d50cf1d9025 | Triage

Submit
Reports

Overview

overview

Static

static

3

198ac2f35e...18.exe

windows7-x64

198ac2f35e...18.exe

windows10-2004-x64

Sharing

General

Target

198ac2f35e95faab215f9dad2bca324c_JaffaCakes118
Size

51KB
Sample

240628-kx1e4a1dla
MD5

198ac2f35e95faab215f9dad2bca324c
SHA1

6f3e3f97c914a98ca9de0f94c90e391eed17400e
SHA256

4f7717a566d89d50e2e12212dfd4e325489650185c19cf4db56b8d50cf1d9025
SHA512

ae9f7ad3d98e4a1417cb8274bb19c795d3eb302d606f2f93f5c049a5ad3db8ee363ca1d122e458a88a27585f7b2814e144e2587dbab1ee01a12dda4f4d72163d
SSDEEP

768:cV2tmKcwIfY7nvFjkrBvbGo1zOY/NSQzDZTHCU58HOfUTwAQZQqyKtV3LoobLgSB:G2tm1RY7ncS8OYgqU8SqRyKLRMhUCw

Score

10^/10

modiloader trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

198ac2f35e95faab215f9dad2bca324c_JaffaCakes118.exe

Resource

win7-20240508-en

modiloader trojan

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

198ac2f35e95faab215f9dad2bca324c_JaffaCakes118.exe

Resource

win10v2004-20240611-en

modiloader trojan

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  198ac2f35e95faab215f9dad2bca324c_JaffaCakes118
- Size
  
  51KB
- MD5
  
  198ac2f35e95faab215f9dad2bca324c
- SHA1
  
  6f3e3f97c914a98ca9de0f94c90e391eed17400e
- SHA256
  
  4f7717a566d89d50e2e12212dfd4e325489650185c19cf4db56b8d50cf1d9025
- SHA512
  
  ae9f7ad3d98e4a1417cb8274bb19c795d3eb302d606f2f93f5c049a5ad3db8ee363ca1d122e458a88a27585f7b2814e144e2587dbab1ee01a12dda4f4d72163d
- SSDEEP
  
  768:cV2tmKcwIfY7nvFjkrBvbGo1zOY/NSQzDZTHCU58HOfUTwAQZQqyKtV3LoobLgSB:G2tm1RY7ncS8OYgqU8SqRyKLRMhUCw
Score

10^/10

modiloader trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader Second Stage
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

modiloadertrojan

behavioral2

modiloadertrojan

© 2018-2024

Terms | Privacy