modiloader | 6862f026a60890d6a790f7783addd5e86e60384289476989454a0154be4a09b8 | Triage

Submit
Reports

Overview

overview

Static

static

3

bonifico n...df.exe

windows7-x64

1

bonifico n...df.exe

windows10-2004-x64

Sharing

General

Target

bonifico n.1205233350402700_pdf.bin
Size

1.8MB
Sample

231206-ntvl8aed77
MD5

a18d53a15adcd104da65f264a173918d
SHA1

e0c5fc276261c539786a092860ff479f169fa359
SHA256

6862f026a60890d6a790f7783addd5e86e60384289476989454a0154be4a09b8
SHA512

4b0471dd32222ed956cbb7ab4ef996bf448a240ed578f7ce4aa98bc118c1a574597f3368e3cf62029f3c2c4ea46a9eeecce366014d606a027ed9199984e1f386
SSDEEP

49152:iytH9q1rUPS1qXtfRGHKpk3H8eiTwHFimH9jIrMKSIa+GGXHIfd2Ddk6L+O/:i+HqkS1qXtfRGHKpk3H8eiTwHFimH9jm

Score

10^/10

modiloader trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

bonifico n.1205233350402700_pdf.exe

Resource

win7-20231129-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

bonifico n.1205233350402700_pdf.exe

Resource

win10v2004-20231130-en

modiloader trojan

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  bonifico n.1205233350402700_pdf.bin
- Size
  
  1.8MB
- MD5
  
  a18d53a15adcd104da65f264a173918d
- SHA1
  
  e0c5fc276261c539786a092860ff479f169fa359
- SHA256
  
  6862f026a60890d6a790f7783addd5e86e60384289476989454a0154be4a09b8
- SHA512
  
  4b0471dd32222ed956cbb7ab4ef996bf448a240ed578f7ce4aa98bc118c1a574597f3368e3cf62029f3c2c4ea46a9eeecce366014d606a027ed9199984e1f386
- SSDEEP
  
  49152:iytH9q1rUPS1qXtfRGHKpk3H8eiTwHFimH9jIrMKSIa+GGXHIfd2Ddk6L+O/:i+HqkS1qXtfRGHKpk3H8eiTwHFimH9jm
Score

10^/10

modiloader trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader Second Stage
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

modiloadertrojan

© 2018-2024

Terms | Privacy