General
-
Target
3f9c282b5cd8f904cf082a3348861347
-
Size
380KB
-
Sample
240104-cex81shbf5
-
MD5
3f9c282b5cd8f904cf082a3348861347
-
SHA1
2c296488167702f98035b3cbb3373eca9cc23cdd
-
SHA256
abe355634e3c8d57c10ffd77612b879f827051f5b6ea0be3bd0beab152a7b195
-
SHA512
5f75392cc36676b259b13e1b2efa62645750ffee7e8be6a950006beadb918951b95b4e8602713bb744c888286654aa77d9fb8764a7e36642f7b40c0669177d16
-
SSDEEP
6144:veGbAwLaV6qJ0fg3kfC7QLPkWFyNYdT6GcfQCWEhEhg1Y/GwPziuXZ1+ooyhdj:PLagqJqrCcLcaTNCWEhEhL1XZ1Poyhdj
Malware Config
Targets
-
-
Target
3f9c282b5cd8f904cf082a3348861347
-
Size
380KB
-
MD5
3f9c282b5cd8f904cf082a3348861347
-
SHA1
2c296488167702f98035b3cbb3373eca9cc23cdd
-
SHA256
abe355634e3c8d57c10ffd77612b879f827051f5b6ea0be3bd0beab152a7b195
-
SHA512
5f75392cc36676b259b13e1b2efa62645750ffee7e8be6a950006beadb918951b95b4e8602713bb744c888286654aa77d9fb8764a7e36642f7b40c0669177d16
-
SSDEEP
6144:veGbAwLaV6qJ0fg3kfC7QLPkWFyNYdT6GcfQCWEhEhg1Y/GwPziuXZ1+ooyhdj:PLagqJqrCcLcaTNCWEhEhL1XZ1Poyhdj
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-