modiloader | 45196da24df8582560c84088e81b3eecbfb19f8da2fcd7cd75aed2d8851aeeba | Triage

Submit
Reports

Overview

overview

Static

static

3

0ceab7e105...cd.exe

windows7-x64

0ceab7e105...cd.exe

windows10-2004-x64

Sharing

General

Target

0ceab7e105d0a554716bd4cf98ed97cd
Size

131KB
Sample

231230-dzhvhabhcj
MD5

0ceab7e105d0a554716bd4cf98ed97cd
SHA1

c2d7189d1c2bea1a652d442d556a032de9d6bc73
SHA256

45196da24df8582560c84088e81b3eecbfb19f8da2fcd7cd75aed2d8851aeeba
SHA512

befbfabba7526837b42fcf3ffb2718eeaeb2a37e1fe30b30aa0f6b5c19d89baac942b0512d880b44ff85303e063bb320e982791a93f6e7508f7f78bcc71f28a2
SSDEEP

3072:SuyrHX1EedcfeO4iwQCxkhBzEpdVWNL/Ggi98FlDM9c:SuyrHX1XdpOTW3VWFGgMeDMe

Score

10^/10

modiloader evasion trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

0ceab7e105d0a554716bd4cf98ed97cd.exe

Resource

win7-20231215-en

modiloader evasion trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

0ceab7e105d0a554716bd4cf98ed97cd.exe

Resource

win10v2004-20231215-en

modiloader evasion trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  0ceab7e105d0a554716bd4cf98ed97cd
- Size
  
  131KB
- MD5
  
  0ceab7e105d0a554716bd4cf98ed97cd
- SHA1
  
  c2d7189d1c2bea1a652d442d556a032de9d6bc73
- SHA256
  
  45196da24df8582560c84088e81b3eecbfb19f8da2fcd7cd75aed2d8851aeeba
- SHA512
  
  befbfabba7526837b42fcf3ffb2718eeaeb2a37e1fe30b30aa0f6b5c19d89baac942b0512d880b44ff85303e063bb320e982791a93f6e7508f7f78bcc71f28a2
- SSDEEP
  
  3072:SuyrHX1EedcfeO4iwQCxkhBzEpdVWNL/Ggi98FlDM9c:SuyrHX1XdpOTW3VWFGgMeDMe
Score

10^/10

modiloader evasion trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- UAC bypass
  evasion trojan
- ModiLoader Second Stage
- Loads dropped DLL
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Abuse Elevation Control Mechanism

Bypass User Account Control

Defense Evasion

Abuse Elevation Control Mechanism

Bypass User Account Control

Impair Defenses

Disable or Modify Tools

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

modiloaderevasiontrojan

behavioral2

modiloaderevasiontrojan

© 2018-2025

Terms | Privacy