modernloader | ceae593f359a902398e094e1cdbc4502c8fd0ba6b71e625969da6df5464dea95[.]zip | Triage

Submit
Reports

Overview

overview

Static

static

ceae593f35...95.exe

windows10-2004-x64

Resubmissions

08/05/2023, 17:00

230508-vjaydsbg42 10

14/02/2023, 13:13

230214-qgk85ade84 10

07/12/2022, 22:56

221207-2w7lfsgd74 6

Sharing

Copy URL Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ceae593f359a902398e094e1cdbc4502c8fd0ba6b71e625969da6df5464dea95.exe

Resource

win10v2004-20220901-en

modernloader rat trojan

windows10-2004-x64

4 signatures

120 seconds

General

Target

ceae593f359a902398e094e1cdbc4502c8fd0ba6b71e625969da6df5464dea95.zip
Size

10KB
MD5

9c788e4ad25e76b3cc5b9d872be65268
SHA1

2d4e0e90c85c192d9a8ee2573aa522f59d9c7ec3
SHA256

060e400d1b46ea592d8ceb567ea4a2839b42cfca30828981d5cf3b904ebb87bd
SHA512

39d44c737cf9b76e07d73615993f87415428a74b2fbe9640c8470c1b4ff54e2e1511bd23df9b05884489b32c74828f106a1d9e14a3b78ceab37f595d02898f93
SSDEEP

192:H456WaL7Fr+gm8A2UupNzboRhacWA7JjQhRuxOdD6Zq+T0JpASuW4FQrfM14t:H45tK7F69RQ7zwhacWyJjQhRyo8bT0IK

Score

10^/10

modernloader

Malware Config

Extracted

Family

modernloader

Version

Bot

C2

http://62.204.41.235/AVA/gate.php

Mutex

%XBoxLive%

Attributes

delay
333
process_terminate
false

Signatures

Modernloader family
modernloader

Files

ceae593f359a902398e094e1cdbc4502c8fd0ba6b71e625969da6df5464dea95.zip
.zip

Password: infected
ceae593f359a902398e094e1cdbc4502c8fd0ba6b71e625969da6df5464dea95.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy