Analysis
-
max time kernel
121s -
max time network
122s -
platform
windows7_x64 -
resource
win7-20240508-en -
resource tags
arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system -
submitted
28-06-2024 13:42
Behavioral task
behavioral1
Sample
barney-error-maker.exe
Resource
win7-20240508-en
2 signatures
150 seconds
Behavioral task
behavioral2
Sample
barney-error-maker.exe
Resource
win10v2004-20240226-en
8 signatures
150 seconds
General
-
Target
barney-error-maker.exe
-
Size
24.9MB
-
MD5
96a692baf16c64b02b04bc0d2901b0ae
-
SHA1
d3e593d40bd792f2f2b1feea437ab876d4af8c96
-
SHA256
e67fa62cff0b9fbd5b243bc7d4bfa223f666b923565caf1bac43d396acba0c16
-
SHA512
ac89e76bbaef58a4fdb932da2f066baed95277914c147dcbd20347bec0b26b05f6174c3889c954eed3ced3dc7c14561b237207ffb608c4d7271c0f12fa66bfa3
-
SSDEEP
786432:vsobryy55Kj5EN9VZl+Z1Mb8w7kYOSbg0FLq:vtXysKjWNjZl+Z1LwwYOrr
Score
10/10
Malware Config
Signatures
-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage 1 IoCs
Processes:
resource yara_rule behavioral1/memory/2136-1-0x0000000000400000-0x00000000004DA000-memory.dmp modiloader_stage2