Overview

overview

10

Static

static

1

fc137b6733...34.exe

windows7-x64

10

fc137b6733...34.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9335975830.zip

  • Size

    365KB

  • Sample

    230227-x7zyjafd43

  • MD5

    0201c619c17ea7d95b58c69c403d7eba

  • SHA1

    7266b909cfce9db65971c9c767056419938bd122

  • SHA256

    b88e4df360ffe7ca76f3993cd0a0caeffea622e1dfeb114a51c3d301bcf90f09

  • SHA512

    77ef42a929edfc19704051d9a10d8bf14b5953f654fc2adb6daf6f877796b95aa572d804fa6b1841f91b2d061a2ce11e793db7cc216532e53a4ccff3d16093ee

  • SSDEEP

    6144:Ti2MnZHhwEwF4FAwpTwbNgakHH1Tap74JrvUh53BGfBEJ8pPb9Lf9SH:ZMnZBwEweA8MbN4Pv4wB669SH

Score
10/10
modiloadertrojan

Malware Config

Targets

    • Target

      fc137b673379a46d1a48945e7616e4ad607dfbd1f9778847ed2b4a78f52c9434

    • Size

      37.2MB

    • MD5

      cf88f8e774757b2fe4f478b80d8a7855

    • SHA1

      5679c77c5b4e6e8fcac610aff7d47e58356dc63f

    • SHA256

      fc137b673379a46d1a48945e7616e4ad607dfbd1f9778847ed2b4a78f52c9434

    • SHA512

      3af591b00a2e60e79b7d148898c2bd13bb03d695378930ced8e55e1e5589a89f28b461377486f8272fc663227830b56fccd2843a0581bc55317948868ef7035b

    • SSDEEP

      12288:Cb8A+lyMML0gN55kXFyqf0bGBvGoE3IhAf1nAhglR:C4ZzML0gN5WXFaK9GoEHf1nAhglR

    Score
    10/10
    modiloadertrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • ModiLoader Second Stage

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Web Service

1
T1102

Impact

Tasks