modiloader | 21ff3661fd96f689aa32338ca899eef0afdc23f509bf29cbb85ad6da5f7bcee6 | Triage

Submit
Reports

Overview

overview

Static

static

21ff3661fd...e6.exe

windows7_x64

21ff3661fd...e6.exe

windows10-2004_x64

Sharing

General

Target

21ff3661fd96f689aa32338ca899eef0afdc23f509bf29cbb85ad6da5f7bcee6
Size

1.0MB
Sample

220420-ewlyesahe7
MD5

6adcba88a16f508ec905410cbb050894
SHA1

d56cf76e5dac45f67a4e20e6a5b5b909d0f81b7d
SHA256

21ff3661fd96f689aa32338ca899eef0afdc23f509bf29cbb85ad6da5f7bcee6
SHA512

b0d6058716d4bf1f9b82a80cf53f3663848a1a984b2509807606b932d47f584eb7e20064328e287eff1a906e3cd9e8fe1b9b95089a8ad7d38217e07370a7e4df

Score

10^/10

modiloader trojan

Static task

static1

Behavioral task

behavioral1

Sample

21ff3661fd96f689aa32338ca899eef0afdc23f509bf29cbb85ad6da5f7bcee6.exe

Resource

win7-20220414-en

modiloader trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

21ff3661fd96f689aa32338ca899eef0afdc23f509bf29cbb85ad6da5f7bcee6.exe

Resource

win10v2004-20220414-en

modiloader trojan

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

modiloader

C2

https://cdn.discordapp.com/attachments/762895490362638339/771585630530306059/Swdlert

Targets

- Target
  
  21ff3661fd96f689aa32338ca899eef0afdc23f509bf29cbb85ad6da5f7bcee6
- Size
  
  1.0MB
- MD5
  
  6adcba88a16f508ec905410cbb050894
- SHA1
  
  d56cf76e5dac45f67a4e20e6a5b5b909d0f81b7d
- SHA256
  
  21ff3661fd96f689aa32338ca899eef0afdc23f509bf29cbb85ad6da5f7bcee6
- SHA512
  
  b0d6058716d4bf1f9b82a80cf53f3663848a1a984b2509807606b932d47f584eb7e20064328e287eff1a906e3cd9e8fe1b9b95089a8ad7d38217e07370a7e4df
Score

10^/10

modiloader trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader First Stage
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Web Service

Impact

Tasks

static1

behavioral1

modiloadertrojan

behavioral2

modiloadertrojan

© 2018-2024

Terms | Privacy