Overview

overview

10

Static

static

1

4e55b2ec66...e2.exe

windows7-x64

10

4e55b2ec66...e2.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    145s
  • max time network
    156s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    10-02-2023 00:22

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4e55b2ec6600966189f48318f557e66a9197b0192e7c24b793f5bbd8116baae2.exe

  • Size

    768KB

  • MD5

    60faea31bf224b220204dc167f1418f8

  • SHA1

    7849870bd13daf80db63e11cc70b9082b427b60f

  • SHA256

    4e55b2ec6600966189f48318f557e66a9197b0192e7c24b793f5bbd8116baae2

  • SHA512

    5870abc4939556654b60e538bfea254d83f6263a53434dda1c71bf09844dc0b6e146c1d943f8faedc66ae6b55c8e89df228a46337806ba0bb445c8a2ee4a5944

  • SSDEEP

    12288:Zlm8oGNXxAKz3SiHxTqlC9KVlLaS0tZIANC2qywKHzAcCcu98sDa:bxoqxAKrSiHhqlC9yOHWUqybzYT9FD

Score
10/10
modiloadertrojan

Malware Config

Signatures

  • ModiLoader, DBatLoader

    ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

    trojanmodiloader
  • ModiLoader Second Stage 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\4e55b2ec6600966189f48318f557e66a9197b0192e7c24b793f5bbd8116baae2.exe
    "C:\Users\Admin\AppData\Local\Temp\4e55b2ec6600966189f48318f557e66a9197b0192e7c24b793f5bbd8116baae2.exe"
    1⤵
      PID:856

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/856-54-0x0000000076151000-0x0000000076153000-memory.dmp
      Filesize

      8KB

      Download
    • memory/856-55-0x0000000001C00000-0x0000000001C2B000-memory.dmp
      Filesize

      172KB

      Download