modiloader | 6d5ed2249815975fad15d89d0bf9c197e9b83a4fe8723a1b91885d66a26ea693 | Triage

Sharing

General

Target

6d5ed2249815975fad15d89d0bf9c197e9b83a4fe8723a1b91885d66a26ea693
Size

498KB
Sample

221125-z2r2vaac8x
MD5

4842aad457fdcd7da02efecba7e4ae72
SHA1

2d48c2319d4319caedb76ba8ae931def211fc41f
SHA256

6d5ed2249815975fad15d89d0bf9c197e9b83a4fe8723a1b91885d66a26ea693
SHA512

ba168d8be6cc2725e101b8a6c62e1941c431529060c8f0d384846e8119f86431263dce3f3ace57cfc24d3fa53cb52f33ab3f7d139881c32f2a1ebea455fd8e51
SSDEEP

6144:bLy84u9nSO2GjZkD10BIY3rb1YfBdfpoZ3u/Ht52w6JSeiFPXI:H+u9nx2GjMY3XKfd/H/9PI

Score

10^/10

modiloader persistence

Malware Config

Targets

- Target
  
  6d5ed2249815975fad15d89d0bf9c197e9b83a4fe8723a1b91885d66a26ea693
- Size
  
  498KB
- MD5
  
  4842aad457fdcd7da02efecba7e4ae72
- SHA1
  
  2d48c2319d4319caedb76ba8ae931def211fc41f
- SHA256
  
  6d5ed2249815975fad15d89d0bf9c197e9b83a4fe8723a1b91885d66a26ea693
- SHA512
  
  ba168d8be6cc2725e101b8a6c62e1941c431529060c8f0d384846e8119f86431263dce3f3ace57cfc24d3fa53cb52f33ab3f7d139881c32f2a1ebea455fd8e51
- SSDEEP
  
  6144:bLy84u9nSO2GjZkD10BIY3rb1YfBdfpoZ3u/Ht52w6JSeiFPXI:H+u9nx2GjMY3XKfd/H/9PI
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2