Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

19855febe8...24.exe

windows7-x64

10

19855febe8...24.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    19855febe87d07f746f7809f3c0d7d24

  • Size

    611KB

  • Sample

    231230-qeh1zseeal

  • MD5

    19855febe87d07f746f7809f3c0d7d24

  • SHA1

    1446bbb187148e458d39fb5d75f4653325b92300

  • SHA256

    e3b460d725925124eebda2b6a08c641056db2dc5b4ffd957dc11361c1a6a2247

  • SHA512

    700caa9f1b8925f76ba221666ecc28a0579514e15fbeaad2eb330b4ea45ed92ba8cc4d0386105d21c525cfda9c0ebf238ea0a95bbfbd0f8b70fc25fae6ff7d42

  • SSDEEP

    12288:6DvQ93MYXE2RuwkBFAEaTGCYifEeYEvvwfwHF3Z4mxxcg4DE9YpKN2Fx:6DvQ9hXxVuFfpCY/ePvvwfwHQmXVZ9qL

Score
10/10
modiloadertrojan

Malware Config

Targets

    • Target

      19855febe87d07f746f7809f3c0d7d24

    • Size

      611KB

    • MD5

      19855febe87d07f746f7809f3c0d7d24

    • SHA1

      1446bbb187148e458d39fb5d75f4653325b92300

    • SHA256

      e3b460d725925124eebda2b6a08c641056db2dc5b4ffd957dc11361c1a6a2247

    • SHA512

      700caa9f1b8925f76ba221666ecc28a0579514e15fbeaad2eb330b4ea45ed92ba8cc4d0386105d21c525cfda9c0ebf238ea0a95bbfbd0f8b70fc25fae6ff7d42

    • SSDEEP

      12288:6DvQ93MYXE2RuwkBFAEaTGCYifEeYEvvwfwHF3Z4mxxcg4DE9YpKN2Fx:6DvQ9hXxVuFfpCY/ePvvwfwHQmXVZ9qL

    Score
    10/10
    modiloadertrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • ModiLoader Second Stage

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks