modiloader | 374f55bb12c363b17cccb6799b96fa68235c3d4032b6db4d45a575ace0d5cb83 | Triage

Submit
Reports

Overview

overview

Static

static

1b9a97c0e0...18.exe

windows7-x64

1b9a97c0e0...18.exe

windows10-2004-x64

Sharing

General

Target

1b9a97c0e0b622411e59daca57e899df_JaffaCakes118
Size

713KB
Sample

240701-rj5afswclg
MD5

1b9a97c0e0b622411e59daca57e899df
SHA1

5c97b77b31b490ccb473f57bb0ac66f4d9e3be42
SHA256

374f55bb12c363b17cccb6799b96fa68235c3d4032b6db4d45a575ace0d5cb83
SHA512

488a0730d79e2220d1768f2a2a5d68cb37c72498c1cb864218e4a72853ba94d3c44cf13501c482b83fa20acaf828bee0c86fd90e3a7bc5f7a3773d06c4b114aa
SSDEEP

12288:RmcjJTzOidzRbroYj+JFwtuQF499lQAvYxLL0GIdI9Z1guTr9M:0Ip3dzRInjwkdlQlNOI9ZauThM

Score

10^/10

modiloader trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

1b9a97c0e0b622411e59daca57e899df_JaffaCakes118.exe

Resource

win7-20240508-en

modiloader trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

1b9a97c0e0b622411e59daca57e899df_JaffaCakes118.exe

Resource

win10v2004-20240508-en

modiloader trojan

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  1b9a97c0e0b622411e59daca57e899df_JaffaCakes118
- Size
  
  713KB
- MD5
  
  1b9a97c0e0b622411e59daca57e899df
- SHA1
  
  5c97b77b31b490ccb473f57bb0ac66f4d9e3be42
- SHA256
  
  374f55bb12c363b17cccb6799b96fa68235c3d4032b6db4d45a575ace0d5cb83
- SHA512
  
  488a0730d79e2220d1768f2a2a5d68cb37c72498c1cb864218e4a72853ba94d3c44cf13501c482b83fa20acaf828bee0c86fd90e3a7bc5f7a3773d06c4b114aa
- SSDEEP
  
  12288:RmcjJTzOidzRbroYj+JFwtuQF499lQAvYxLL0GIdI9Z1guTr9M:0Ip3dzRInjwkdlQlNOI9ZauThM
Score

10^/10

modiloader trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader Second Stage
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

modiloadertrojan

behavioral2

modiloadertrojan

© 2018-2024

Terms | Privacy