modiloader | a0994e9a9eed1ff9a8323a47ec8eadd45fca88e098d5cb74a40174afea1f6250 | Triage

Sharing

General

Target

a0994e9a9eed1ff9a8323a47ec8eadd45fca88e098d5cb74a40174afea1f6250
Size

469KB
Sample

221123-3kcglscf42
MD5

36b93b280d17dec60af247b71db2ec8a
SHA1

689b8d50ab54d5e81ffd3422863c0df20aee721c
SHA256

a0994e9a9eed1ff9a8323a47ec8eadd45fca88e098d5cb74a40174afea1f6250
SHA512

4e38e1ce8d04912dd40c96dc7d1d28f58ef96e2a47b11e6365027c81e6dec7376f979b05369988d945b500c4315337c1b50bfd4a5ad6cff387976a600237a6a8
SSDEEP

6144:XG377xS2Vp2CeiorXdwTBgWx46jCdJ9/BrU8TNK/bLIxI53FpcCJJvHK:Wr7xS2Vp6RwTyCbjU/BXKbLBbJJvHK

Score

10^/10

modiloader evasion trojan

Malware Config

Targets

- Target
  
  a0994e9a9eed1ff9a8323a47ec8eadd45fca88e098d5cb74a40174afea1f6250
- Size
  
  469KB
- MD5
  
  36b93b280d17dec60af247b71db2ec8a
- SHA1
  
  689b8d50ab54d5e81ffd3422863c0df20aee721c
- SHA256
  
  a0994e9a9eed1ff9a8323a47ec8eadd45fca88e098d5cb74a40174afea1f6250
- SHA512
  
  4e38e1ce8d04912dd40c96dc7d1d28f58ef96e2a47b11e6365027c81e6dec7376f979b05369988d945b500c4315337c1b50bfd4a5ad6cff387976a600237a6a8
- SSDEEP
  
  6144:XG377xS2Vp2CeiorXdwTBgWx46jCdJ9/BrU8TNK/bLIxI53FpcCJJvHK:Wr7xS2Vp6RwTyCbjU/BXKbLBbJJvHK
Score

10^/10

evasion trojan
- UAC bypass
  evasion trojan
- Loads dropped DLL
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Bypass User Account Control

Defense Evasion

Bypass User Account Control

Disabling Security Tools

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2