Overview

overview

10

Static

static

3

3687f7b364...89.exe

windows7-x64

10

3687f7b364...89.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3687f7b36487a1406e61c3227c3cf489

  • Size

    719KB

  • Sample

    231231-pxpe2schb6

  • MD5

    3687f7b36487a1406e61c3227c3cf489

  • SHA1

    4cf6798ea770430d1883692a521bb9689f44ab59

  • SHA256

    26682c41a7c5982589499bb0197cb4bf4ca1d43b754ab218f5377be3236b06f0

  • SHA512

    55a2ee611ce6aa93567a94c169f6eb9276b97a22eff1749396654ebccf261828e4435f1657bc1ff791144b5ba64098d942437ecc91001de9c114f26664044542

  • SSDEEP

    12288:ZtRSsFh1CK4Sv0xqOaOAbO3NOEnYQy6OZQAF7U8Tr+f93yM:ZCsFhrv0d0tE5jOr5TsoM

Score
10/10
modiloadertrojan

Malware Config

Targets

    • Target

      3687f7b36487a1406e61c3227c3cf489

    • Size

      719KB

    • MD5

      3687f7b36487a1406e61c3227c3cf489

    • SHA1

      4cf6798ea770430d1883692a521bb9689f44ab59

    • SHA256

      26682c41a7c5982589499bb0197cb4bf4ca1d43b754ab218f5377be3236b06f0

    • SHA512

      55a2ee611ce6aa93567a94c169f6eb9276b97a22eff1749396654ebccf261828e4435f1657bc1ff791144b5ba64098d942437ecc91001de9c114f26664044542

    • SSDEEP

      12288:ZtRSsFh1CK4Sv0xqOaOAbO3NOEnYQy6OZQAF7U8Tr+f93yM:ZCsFhrv0d0tE5jOr5TsoM

    Score
    10/10
    modiloadertrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • ModiLoader Second Stage

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks