modiloader | a2d74f24e2d3ccb765f3451a2363b0d64261678d12a47f3bfe7fb52daadccf5d | Triage

Submit
Reports

Overview

overview

Static

static

3

2868fe3619...57.exe

windows7-x64

2868fe3619...57.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

2868fe36199e26330909610ecb3fb757
Size

132KB
Sample

231231-e79tmadabj
MD5

2868fe36199e26330909610ecb3fb757
SHA1

42f44ae47eba0dd9d4aa567b7a8d7b2c2b7e0e22
SHA256

a2d74f24e2d3ccb765f3451a2363b0d64261678d12a47f3bfe7fb52daadccf5d
SHA512

faff15cf73ff5fe138ee3f898edb75f5bee0c470fbd04369948edee8eb4a49128b2f913ddfec1de230bf6bdb6f4985d278f68e68181b59972f0a4622f6f5b03c
SSDEEP

3072:UMU0d4EOivoZruByJtXOa2gaR1+aJe1mgawzxsBub861jIHxowPq:zZOivauQOdgaRUTV5n3

Score

10^/10

modiloader trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2868fe36199e26330909610ecb3fb757.exe

Resource

win7-20231215-en

modiloader trojan

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

2868fe36199e26330909610ecb3fb757.exe

Resource

win10v2004-20231215-en

modiloader trojan

windows10-2004-x64

13 signatures

150 seconds

Malware Config

Targets

- Target
  
  2868fe36199e26330909610ecb3fb757
- Size
  
  132KB
- MD5
  
  2868fe36199e26330909610ecb3fb757
- SHA1
  
  42f44ae47eba0dd9d4aa567b7a8d7b2c2b7e0e22
- SHA256
  
  a2d74f24e2d3ccb765f3451a2363b0d64261678d12a47f3bfe7fb52daadccf5d
- SHA512
  
  faff15cf73ff5fe138ee3f898edb75f5bee0c470fbd04369948edee8eb4a49128b2f913ddfec1de230bf6bdb6f4985d278f68e68181b59972f0a4622f6f5b03c
- SSDEEP
  
  3072:UMU0d4EOivoZruByJtXOa2gaR1+aJe1mgawzxsBub861jIHxowPq:zZOivauQOdgaRUTV5n3
Score

10^/10

modiloader trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader Second Stage
- Drops file in Drivers directory
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

modiloadertrojan

behavioral2

modiloadertrojan

© 2018-2025

Terms | Privacy