Overview

overview

10

Static

static

1

Documents/...on.exe

windows7-x64

10

Documents/...on.exe

windows10-2004-x64

10

Documents/...94.exe

windows7-x64

10

Documents/...94.exe

windows10-2004-x64

10

Resubmissions

07-03-2023 20:24

230307-y6twkabb9s 10

07-03-2023 20:20

230307-y4wblsbb8w 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0602 KILTAS_ORD645_TUR.pdf.7z

  • Size

    825KB

  • Sample

    230307-y4wblsbb8w

  • MD5

    eca9ea3ed23a0bd8376da9b8c6279cbb

  • SHA1

    e2755bbef24dc5c00258963f920b70bd9ba3fc09

  • SHA256

    a964eb2cb0024e6d2da4c2178ff114f3b2852642a4ad0026b6a5dd7163f3911f

  • SHA512

    c604e82581d80dac13aa87b5d39f9f0151c4edc2285e42c6f795d1225b8aade2d446369aec72519790806c8ff834dc3aa15d5b3649a9b54acc12b382ef70b346

  • SSDEEP

    12288:p+XR5iTkFnyh7a02mXifjHvf5yf15NCkMNje5w/f8xEAp5nGDQEKQd7tCtFS2cCV:p+05VOoijRydD+P/kDGspQHE57Noo

Score
10/10
modiloadertrojan

Malware Config

Targets

    • Target

      Documents/KILTAS 2034_Company Profile and acredit Certification.exe

    • Size

      42.0MB

    • MD5

      2a84907628128ab7401ee4e962ed3d87

    • SHA1

      08966d0baa71f985d1f99d7591ca6e65a802b4e6

    • SHA256

      46945987476e8248788f30577cb9146326583b8d79a5641c5dda490034c625f7

    • SHA512

      0c49f30709e2bda4e3e034db6a3face51b76a060cf526ae56e139a125fea9e58d67ae8b2d743e8733cf52676ddf1606855793047795d879bd970df903fbd3552

    • SSDEEP

      98304:dUv6mICvmKOd4fGygAPtliUa2qZ6XyfX4tA7+M:dUuF1XFaM

    Score
    10/10
    modiloadertrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • ModiLoader Second Stage

    behavioral1behavioral2

    • Target

      Documents/Specification Details_KILTAS_ORD645_TUR_pdf8756994.exe

    • Size

      42.0MB

    • MD5

      2a84907628128ab7401ee4e962ed3d87

    • SHA1

      08966d0baa71f985d1f99d7591ca6e65a802b4e6

    • SHA256

      46945987476e8248788f30577cb9146326583b8d79a5641c5dda490034c625f7

    • SHA512

      0c49f30709e2bda4e3e034db6a3face51b76a060cf526ae56e139a125fea9e58d67ae8b2d743e8733cf52676ddf1606855793047795d879bd970df903fbd3552

    • SSDEEP

      98304:dUv6mICvmKOd4fGygAPtliUa2qZ6XyfX4tA7+M:dUuF1XFaM

    Score
    10/10
    modiloadertrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • ModiLoader Second Stage

    behavioral3behavioral4

MITRE ATT&CK Matrix

Tasks