modiloader | 475a7c1e0479e9091f17ef91ffe448f15eaefd4b5c3b1da87392219284e5f01c | Triage

Submit
Reports

Overview

overview

Static

static

5

475a7c1e04...1c.exe

windows7-x64

475a7c1e04...1c.exe

windows10-2004-x64

5

Sharing

General

Target

475a7c1e0479e9091f17ef91ffe448f15eaefd4b5c3b1da87392219284e5f01c
Size

881KB
Sample

221126-lh8ctsgd82
MD5

cfca2998f6133e6c4fe966b1da52272f
SHA1

0d1d7092ac2154e4db884b4a258eadb1751eb927
SHA256

475a7c1e0479e9091f17ef91ffe448f15eaefd4b5c3b1da87392219284e5f01c
SHA512

960a7b4cf92b7a63154037530b796bb619d187fa59a47fb1e0916d49543c3ac61e990a7d79e535050a88621951565d158a52ce9e1e9f4881a12fd362e78a4594
SSDEEP

12288:itb20Qc3lT7af41ePBRYuQLKpqeUhbTv5OFgNuPPpHSgaKTpp09/+I6A:itb20pkaCqT5TBWgNQ7aapW9/+I6A

Score

10^/10

modiloader trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

475a7c1e0479e9091f17ef91ffe448f15eaefd4b5c3b1da87392219284e5f01c.exe

Resource

win7-20220812-en

modiloader trojan

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

475a7c1e0479e9091f17ef91ffe448f15eaefd4b5c3b1da87392219284e5f01c.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  475a7c1e0479e9091f17ef91ffe448f15eaefd4b5c3b1da87392219284e5f01c
- Size
  
  881KB
- MD5
  
  cfca2998f6133e6c4fe966b1da52272f
- SHA1
  
  0d1d7092ac2154e4db884b4a258eadb1751eb927
- SHA256
  
  475a7c1e0479e9091f17ef91ffe448f15eaefd4b5c3b1da87392219284e5f01c
- SHA512
  
  960a7b4cf92b7a63154037530b796bb619d187fa59a47fb1e0916d49543c3ac61e990a7d79e535050a88621951565d158a52ce9e1e9f4881a12fd362e78a4594
- SSDEEP
  
  12288:itb20Qc3lT7af41ePBRYuQLKpqeUhbTv5OFgNuPPpHSgaKTpp09/+I6A:itb20pkaCqT5TBWgNQ7aapW9/+I6A
Score

10^/10

modiloader trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader Second Stage
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

modiloadertrojan

behavioral2

© 2018-2024

Terms | Privacy