Overview

overview

10

Static

static

10

wjj11.exe

windows7-x64

10

wjj11.exe

windows10-2004-x64

10

使用说明.htm

windows7-x64

1

使用说明.htm

windows10-2004-x64

1

小游戏.htm

windows7-x64

1

小游戏.htm

windows10-2004-x64

1

常用软�...��.htm

windows7-x64

1

常用软�...��.htm

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    44c241c6ac7b81730c49129dcd94d755ae58bfdb77e43e73f35eccd10911a0f1

  • Size

    703KB

  • Sample

    221127-ngwnrage6t

  • MD5

    814a7e57a06028fd9f42b99896e0a0a7

  • SHA1

    5b69a62353d69a38ba664d37106187aacbb52612

  • SHA256

    44c241c6ac7b81730c49129dcd94d755ae58bfdb77e43e73f35eccd10911a0f1

  • SHA512

    c3d3705db4a32b492867bcf8ca98714a6fe0cfe15bcc81dcd470c3ed34e2b128f593ddd51d4de1d363ea88b213dcdfa7d7d8e00effda10ad185f8544f1dc1756

  • SSDEEP

    12288:Vr1cTw1iAhz1tWQNaHldkgCLeUzC7X/tQQJ5H8Tt63gVeg2epB:x1iwEAhz1wjuvU/bJ18T5Veg24

Score
10/10
modiloadertrojan

Malware Config

Targets

    • Target

      wjj11.exe

    • Size

      1.7MB

    • MD5

      f37023c41ae712e20595650fcc5f06d2

    • SHA1

      f1d0887b2d2c3788b73ba4aefcc0d060d6bfeedd

    • SHA256

      7d5bd56ecfdac63df44fc80c9b5bc2fdf55d491d0ab20edbb3a2ad6825cce076

    • SHA512

      8b27218a41f69e743f11630eb31e5d8af472c688598f438f057a3f65aa2c2644eacd39286aecb090c2343e94ed481a1a291382402b297a7a7b52949ff6c2e643

    • SSDEEP

      24576:nZXBJxLVwqSdNLRlJMXVWxaC5wa1tqqdXE+86TZStU4gf2EW5A2DJr/kS4vGIk6O:FrxBHofJMXGnrvi+RTZh43Dp/wPHXW

    Score
    10/10
    modiloadertrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • ModiLoader Second Stage

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

    • Target

      使用说明.htm

    • Size

      1KB

    • MD5

      11f9b79e1dd88bc67967b5d65c2f0d00

    • SHA1

      9152dbf2c9a76e0a3ce355e73ebc95c2405a384e

    • SHA256

      a0c87ad3fcd851480dc1133bf229b6f4bb582b0584cda05e26b86495225f336b

    • SHA512

      8adb8f3f5441ae310ae89e7067db57576e831332bbec5a0afa3bf82ef843e33f0c28aaecd1d69b7e022a91554d3a79876ef4f3c53c79c999f13c27c65fcefce5

    Score
    1/10
    behavioral3behavioral4

    • Target

      小游戏.htm

    • Size

      83B

    • MD5

      b143bdf85dc53882a1ac17e88e504fb3

    • SHA1

      bfbf4601394b4b99021d47b025022c63e46864b4

    • SHA256

      0d187ce67e96877e558b039b6db240fdaa513160a510d70bfebe51af50b8f8b6

    • SHA512

      ed1169fcd5bcc0500f2c8ce86fbd7470cdd4390386f93ee7be4c1128312d3c1c1aeeffd42260d5c0113cb640c28f9ee9f14f45b1dd1e16f4ed7a3f255502f319

    Score
    1/10
    behavioral5behavioral6

    • Target

      常用软件合集.htm

    • Size

      88B

    • MD5

      5967ad35d7f881dbf791d0ed77426d6f

    • SHA1

      3f1402ab9518330034a556e3e49433ca5ce6fe1b

    • SHA256

      cdbe65a81ff04a5a6412ad0deea549418e22fa3207a7ad94b01172d1ce69aefc

    • SHA512

      65ee6b0bd1fa9e902b7e3803eb714ce5443539ca780807082bfc84cff2364a44e2b82a446f838fed88edb3445b2fc8e693db0a80a877f30f76415a3000ee3e56

    Score
    1/10
    behavioral7behavioral8

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

3
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks