modiloader | 1257ef35144e215243dd1cab572a71e8d79b3f7954c77a4492ecb941c50bfa71 | Triage

Sharing

General

Target

1257ef35144e215243dd1cab572a71e8d79b3f7954c77a4492ecb941c50bfa71
Size

397KB
Sample

221127-bljtjahf88
MD5

f7811b9718c8a654e49cda07173b5461
SHA1

319ae67cceee458c2bc7e4eb0a0ea4683571bd0a
SHA256

1257ef35144e215243dd1cab572a71e8d79b3f7954c77a4492ecb941c50bfa71
SHA512

96d4406658d99517509bb6a525a58580bda1bcae937094776db2ceb837c7fbce0f8c62c4b2249f9dcbb52eee3b89da5cacbb32fa09ca917b61cfb637dd506b19
SSDEEP

6144:MLy84u9nSO2GjZkD10BIY3rb1YfBdfpoZ3u/Ht52w6JSeiFPXmy7:Y+u9nx2GjMY3XKfd/H/9PZ7

Score

10^/10

modiloader persistence

Malware Config

Targets

- Target
  
  1257ef35144e215243dd1cab572a71e8d79b3f7954c77a4492ecb941c50bfa71
- Size
  
  397KB
- MD5
  
  f7811b9718c8a654e49cda07173b5461
- SHA1
  
  319ae67cceee458c2bc7e4eb0a0ea4683571bd0a
- SHA256
  
  1257ef35144e215243dd1cab572a71e8d79b3f7954c77a4492ecb941c50bfa71
- SHA512
  
  96d4406658d99517509bb6a525a58580bda1bcae937094776db2ceb837c7fbce0f8c62c4b2249f9dcbb52eee3b89da5cacbb32fa09ca917b61cfb637dd506b19
- SSDEEP
  
  6144:MLy84u9nSO2GjZkD10BIY3rb1YfBdfpoZ3u/Ht52w6JSeiFPXmy7:Y+u9nx2GjMY3XKfd/H/9PZ7
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2