modiloader | 1868a740c4a9ad3f6df9ee149c74de5744e3488faa33bf3c9811882fbb5d76af | Triage

Submit
Reports

Overview

overview

Static

static

3

Revised Invoice l.exe

windows7-x64

Revised Invoice l.exe

windows10-2004-x64

Sharing

General

Target

Revised Invoice l.exe
Size

2.3MB
Sample

231121-lc4sfsde78
MD5

6a5a8893d6d7274dfe3e8193b17ac279
SHA1

b087b8734092699a75df72fe7155e416a9a3e499
SHA256

1868a740c4a9ad3f6df9ee149c74de5744e3488faa33bf3c9811882fbb5d76af
SHA512

f97cfa7f949f48ff4f979bccf8142ed5498d0260a7b816ab05be5ff09a524173fac645404e04105f38bfb5755061d3862e281d8d6e7247087497bfc7ed63aa64
SSDEEP

49152:zmUjlGU/DDjqvOS6iy3iWOY+YLqaLOlT+rbs69V/:zH3cy3im3L6Qs69x

Score

10^/10

modiloader trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Revised Invoice l.exe

Resource

win7-20231020-en

modiloader trojan

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

Revised Invoice l.exe

Resource

win10v2004-20231025-en

windows10-2004-x64

0 signatures

150 seconds

Malware Config

Targets

- Target
  
  Revised Invoice l.exe
- Size
  
  2.3MB
- MD5
  
  6a5a8893d6d7274dfe3e8193b17ac279
- SHA1
  
  b087b8734092699a75df72fe7155e416a9a3e499
- SHA256
  
  1868a740c4a9ad3f6df9ee149c74de5744e3488faa33bf3c9811882fbb5d76af
- SHA512
  
  f97cfa7f949f48ff4f979bccf8142ed5498d0260a7b816ab05be5ff09a524173fac645404e04105f38bfb5755061d3862e281d8d6e7247087497bfc7ed63aa64
- SSDEEP
  
  49152:zmUjlGU/DDjqvOS6iy3iWOY+YLqaLOlT+rbs69V/:zH3cy3im3L6Qs69x
Score

10^/10

modiloader trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader Second Stage
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

modiloadertrojan

behavioral2

© 2018-2024

Terms | Privacy