Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

9057da6427...50.exe

windows7-x64

10

9057da6427...50.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9057da642752aebb68998bb1c8e5b6a125daa92470ad1191da62a44094187250

  • Size

    631KB

  • Sample

    221202-wljhzsec7x

  • MD5

    3784baf66addb63f047c26c39b40a34e

  • SHA1

    7d7bff16796dad8052bd62c1fda5b4869d2dd279

  • SHA256

    9057da642752aebb68998bb1c8e5b6a125daa92470ad1191da62a44094187250

  • SHA512

    b2865afc1a370fcc98fddab60f7af13d7e64263a53da19460417ec84d59fa6a77212c74e6c67ffe9a14f7643a6a06251b8e302be0ed0157cb28c37c01de64930

  • SSDEEP

    12288:IzT2da7QDms9cKcTUy/xQZZZHCE+gffVUlj0OtlLwu6oGjc4ysHJUB3WnG1x03L:ILs9NO7/xWZHjzfVUljrbwu6oQcaHJUq

Score
10/10
modiloadertrojan

Malware Config

Targets

    • Target

      9057da642752aebb68998bb1c8e5b6a125daa92470ad1191da62a44094187250

    • Size

      631KB

    • MD5

      3784baf66addb63f047c26c39b40a34e

    • SHA1

      7d7bff16796dad8052bd62c1fda5b4869d2dd279

    • SHA256

      9057da642752aebb68998bb1c8e5b6a125daa92470ad1191da62a44094187250

    • SHA512

      b2865afc1a370fcc98fddab60f7af13d7e64263a53da19460417ec84d59fa6a77212c74e6c67ffe9a14f7643a6a06251b8e302be0ed0157cb28c37c01de64930

    • SSDEEP

      12288:IzT2da7QDms9cKcTUy/xQZZZHCE+gffVUlj0OtlLwu6oGjc4ysHJUB3WnG1x03L:ILs9NO7/xWZHjzfVUljrbwu6oQcaHJUq

    Score
    10/10
    modiloadertrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • ModiLoader Second Stage

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks