Overview

overview

10

Static

static

1

H3409D.exe

windows7-x64

10

H3409D.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    28ca6f097c72ee690fc2dd5d3ab9cd4886f9a5155005aa3cd3fa4832a0c81c98.zip

  • Size

    367KB

  • Sample

    230321-r1yt1add41

  • MD5

    6814ec76a56e5ef86baae162f31e3b73

  • SHA1

    f9184547e0be6720a157e5fe435625734be32d36

  • SHA256

    c8b761bbfd38e7f2610f2b4b44cde4be9fc854b832075d26944e509a07974295

  • SHA512

    c5ced221e86cf0234c4af0366860535e29164d6bcad389a3ce1127a53e32aa3c384da8c761835ed0d2e70ed5a507f45037f24c650d0dc25929a143b2ac3631a8

  • SSDEEP

    6144:gYffwcaTEb6eL1k+O9Xe90WBAumQqRbKuyE3MQOoKCjg928daxL0JNeZWQ9YbB6F:bf6Au+0Xe90imrbKHIFKCcxda2eZWQ20

Score
10/10
modiloadertrojan

Malware Config

Targets

    • Target

      H3409D.exe

    • Size

      770KB

    • MD5

      8173c4f1aab9e70409d795b904d1b30b

    • SHA1

      ca3a7fa60e5f910647316450c257a11aab8e7299

    • SHA256

      d69785e0fa78ddb451072e232164234057e49a7671695c33c0db64adba871e44

    • SHA512

      0815ae280189619c39bbffc0b75a93d499363c1389c2e3c98eadce769f47d775e81be2bf3d293b6c4bb9e51a41d1398f2130c93983152adc19e25918835c6cb9

    • SSDEEP

      12288:gKLJyUZiUWf0sSEpcwXybqAsespUI2PRl/NnLLm:fly1UWf0s7qwXwI1pUDZl/NnLL

    Score
    10/10
    modiloadertrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • ModiLoader Second Stage

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks