Behavioral task
behavioral1
Sample
2F891AE1B2EE0417201D1A6BA499A333.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2F891AE1B2EE0417201D1A6BA499A333.exe
Resource
win10v2004-20231215-en
General
-
Target
2F891AE1B2EE0417201D1A6BA499A333
-
Size
1.2MB
-
MD5
32a8e56fb7af0fb94f679e6ecc0ffae8
-
SHA1
65a603a41ab17674f0638962ac0f4f8fbde7faae
-
SHA256
a9804eb999f85d63729561ec717d3571c1f980a04d42047e01310d4340b233d3
-
SHA512
b5dba9a49d6098040aa073f196485d63277e7d7e47fad5e49887dac0a81369ccb2ea382822d080fd7e8400d354f4dd70bf3b6d401a5f20a573a7b5a13723536e
-
SSDEEP
24576:HhuezhVtZOg761mWfVlKcgmeRERxmAxxQ:BNzhVzORsWfKmeREzmIxQ
Malware Config
Signatures
-
ModiLoader Second Stage 1 IoCs
resource yara_rule sample modiloader_stage2 -
Modiloader family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2F891AE1B2EE0417201D1A6BA499A333
Files
-
2F891AE1B2EE0417201D1A6BA499A333.exe windows:0 windows
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
Size: 1.1MB - Virtual size: 1.1MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ