modiloader | 9579ccf853d309acb8c5a5a46b980b31380b17e7b3de0268a6c66e40636f83e6 | Triage

Submit
Reports

Overview

overview

Static

static

3

1a2e2f0a4b...18.exe

windows7-x64

1a2e2f0a4b...18.exe

windows10-2004-x64

Sharing

General

Target

1a2e2f0a4bd39cc5354a6afdfcccadf9_JaffaCakes118
Size

27KB
Sample

240628-p2lvqatanm
MD5

1a2e2f0a4bd39cc5354a6afdfcccadf9
SHA1

58547848ed0072732979bf49ff937772fd011983
SHA256

9579ccf853d309acb8c5a5a46b980b31380b17e7b3de0268a6c66e40636f83e6
SHA512

64be3d5a5a1c744ffb964106ccec67934eb8e18b1684705decaef0ec33a57cdfb08ac7d9eb38804a068c9f0190f612d326f507bebbbfc6502058cff0f8bd7ed5
SSDEEP

768:jwJpFHSLyupC2/kPWjWWY/mmS9qRjzfH46uM:jwJpFHSOuopPWjx9qFH46uM

Score

10^/10

modiloader trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

1a2e2f0a4bd39cc5354a6afdfcccadf9_JaffaCakes118.exe

Resource

win7-20240611-en

modiloader trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

1a2e2f0a4bd39cc5354a6afdfcccadf9_JaffaCakes118.exe

Resource

win10v2004-20240508-en

modiloader trojan

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  1a2e2f0a4bd39cc5354a6afdfcccadf9_JaffaCakes118
- Size
  
  27KB
- MD5
  
  1a2e2f0a4bd39cc5354a6afdfcccadf9
- SHA1
  
  58547848ed0072732979bf49ff937772fd011983
- SHA256
  
  9579ccf853d309acb8c5a5a46b980b31380b17e7b3de0268a6c66e40636f83e6
- SHA512
  
  64be3d5a5a1c744ffb964106ccec67934eb8e18b1684705decaef0ec33a57cdfb08ac7d9eb38804a068c9f0190f612d326f507bebbbfc6502058cff0f8bd7ed5
- SSDEEP
  
  768:jwJpFHSLyupC2/kPWjWWY/mmS9qRjzfH46uM:jwJpFHSOuopPWjx9qFH46uM
Score

10^/10

modiloader trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader Second Stage
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

modiloadertrojan

behavioral2

modiloadertrojan

© 2018-2024

Terms | Privacy