Overview

overview

10

Static

static

901fe48875...70.exe

windows7-x64

10

901fe48875...70.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    901fe48875c78d058bb6ecdd6c1c85ab2a0fbb2508d2d10f14b8c472e38fc470

  • Size

    806KB

  • Sample

    221203-s9vdlsde86

  • MD5

    e0567431a32ef78df844bc9a0886719c

  • SHA1

    685befab42ab67bd38c8026aa84942ff8d33ed6f

  • SHA256

    901fe48875c78d058bb6ecdd6c1c85ab2a0fbb2508d2d10f14b8c472e38fc470

  • SHA512

    ba12e5d3bf838ded0aeb7dd3809f784737662d360b1bf0e3633743eabb098e70871de17728d4a2bde9c9638634e5f3624ad31d4746c9b86746e18b8dba9737ce

  • SSDEEP

    24576:MXiyOc//////sP3yip2nWrjp+P7c1iUB9/b:Pc//////sP30nwjCgB9j

Score
10/10
modiloadertrojan

Malware Config

Targets

    • Target

      901fe48875c78d058bb6ecdd6c1c85ab2a0fbb2508d2d10f14b8c472e38fc470

    • Size

      806KB

    • MD5

      e0567431a32ef78df844bc9a0886719c

    • SHA1

      685befab42ab67bd38c8026aa84942ff8d33ed6f

    • SHA256

      901fe48875c78d058bb6ecdd6c1c85ab2a0fbb2508d2d10f14b8c472e38fc470

    • SHA512

      ba12e5d3bf838ded0aeb7dd3809f784737662d360b1bf0e3633743eabb098e70871de17728d4a2bde9c9638634e5f3624ad31d4746c9b86746e18b8dba9737ce

    • SSDEEP

      24576:MXiyOc//////sP3yip2nWrjp+P7c1iUB9/b:Pc//////sP30nwjCgB9j

    Score
    10/10
    modiloadertrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • ModiLoader Second Stage

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks