modiloader | 21ff3661fd96f689aa32338ca899eef0afdc23f509bf29cbb85ad6da5f7bcee6 | Triage

Submit
Reports

Overview

overview

Static

static

21ff3661fd...e6.exe

windows7_x64

21ff3661fd...e6.exe

windows10-2004_x64

Sharing

General

Target

21ff3661fd96f689aa32338ca899eef0afdc23f509bf29cbb85ad6da5f7bcee6
Size

1.0MB
Sample

220420-ewlyesahe7
MD5

6adcba88a16f508ec905410cbb050894
SHA1

d56cf76e5dac45f67a4e20e6a5b5b909d0f81b7d
SHA256

21ff3661fd96f689aa32338ca899eef0afdc23f509bf29cbb85ad6da5f7bcee6
SHA512

b0d6058716d4bf1f9b82a80cf53f3663848a1a984b2509807606b932d47f584eb7e20064328e287eff1a906e3cd9e8fe1b9b95089a8ad7d38217e07370a7e4df

Score

10^/10

modiloader trojan

Static task

static1

Behavioral task

behavioral1

Sample

21ff3661fd96f689aa32338ca899eef0afdc23f509bf29cbb85ad6da5f7bcee6.exe

Resource

win7-20220414-en

modiloader trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

21ff3661fd96f689aa32338ca899eef0afdc23f509bf29cbb85ad6da5f7bcee6.exe

Resource

win10v2004-20220414-en

modiloader trojan

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

modiloader

C2

https://cdn.discordapp.com/attachments/762895490362638339/771585630530306059/Swdlert

Targets

- Target
  
  21ff3661fd96f689aa32338ca899eef0afdc23f509bf29cbb85ad6da5f7bcee6
- Size
  
  1.0MB
- MD5
  
  6adcba88a16f508ec905410cbb050894
- SHA1
  
  d56cf76e5dac45f67a4e20e6a5b5b909d0f81b7d
- SHA256
  
  21ff3661fd96f689aa32338ca899eef0afdc23f509bf29cbb85ad6da5f7bcee6
- SHA512
  
  b0d6058716d4bf1f9b82a80cf53f3663848a1a984b2509807606b932d47f584eb7e20064328e287eff1a906e3cd9e8fe1b9b95089a8ad7d38217e07370a7e4df
Score

10^/10

modiloader trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader First Stage
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Web Service

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

modiloadertrojan

behavioral2

modiloadertrojan

© 2018-2024

Terms | Privacy