Overview

overview

10

Static

static

bd8a1ba355...d1.exe

windows7_x64

10

bd8a1ba355...d1.exe

windows10_x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bd8a1ba3556221c105087262321114d1

  • Size

    862KB

  • Sample

    211213-y3trdseca7

  • MD5

    bd8a1ba3556221c105087262321114d1

  • SHA1

    ef49cd974cf09508d3b86c9fdc48ce33f1a5aeed

  • SHA256

    b7a6d7f4d15e42eb71836dc7372f48654462c7752d015513232346f0af92f81e

  • SHA512

    f7683f4d055cca2ca3907fb227c6b03382a19f692b79324a05df5bf4a89240612e2727e1934e9ac898d4fa508220f339de2c3608f8b1124c3b792996f3aef8e6

Score
10/10
modiloadertrojan

Malware Config

Targets

    • Target

      bd8a1ba3556221c105087262321114d1

    • Size

      862KB

    • MD5

      bd8a1ba3556221c105087262321114d1

    • SHA1

      ef49cd974cf09508d3b86c9fdc48ce33f1a5aeed

    • SHA256

      b7a6d7f4d15e42eb71836dc7372f48654462c7752d015513232346f0af92f81e

    • SHA512

      f7683f4d055cca2ca3907fb227c6b03382a19f692b79324a05df5bf4a89240612e2727e1934e9ac898d4fa508220f339de2c3608f8b1124c3b792996f3aef8e6

    Score
    10/10
    modiloadertrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • ModiLoader First Stage

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

1
T1130

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks