General
-
Target
Vabiukbpuxdbuh.exe
-
Size
771KB
-
Sample
230227-h13zaacb3y
-
MD5
406d72b38cb0340752ff14290ec2e9e8
-
SHA1
809309bb3d86eb78cc7a2a21586bc0b379f5e838
-
SHA256
cceae54514e3228ca945ebb268b1c3a71f4a34faeccbbe3dd07524397c4f478f
-
SHA512
871767e3f39dda0a073c406cf712866158d709e8fd8b3535367466a4bda7d5993f9b7d815d83c75a26b72421298c31784fb00cb4ea85324e213ba11ec2207251
-
SSDEEP
12288:Pr5Nxzs78p/cJCzQkgtr80XGjObPkOOfIiteSmF0Z/:PFvzs7bJWbgtopibPkOOnm0
Static task
static1
Behavioral task
behavioral1
Sample
Vabiukbpuxdbuh.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
Vabiukbpuxdbuh.exe
Resource
win10v2004-20230220-en
Malware Config
Targets
-
-
Target
Vabiukbpuxdbuh.exe
-
Size
771KB
-
MD5
406d72b38cb0340752ff14290ec2e9e8
-
SHA1
809309bb3d86eb78cc7a2a21586bc0b379f5e838
-
SHA256
cceae54514e3228ca945ebb268b1c3a71f4a34faeccbbe3dd07524397c4f478f
-
SHA512
871767e3f39dda0a073c406cf712866158d709e8fd8b3535367466a4bda7d5993f9b7d815d83c75a26b72421298c31784fb00cb4ea85324e213ba11ec2207251
-
SSDEEP
12288:Pr5Nxzs78p/cJCzQkgtr80XGjObPkOOfIiteSmF0Z/:PFvzs7bJWbgtopibPkOOnm0
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-