General

  • Target

    8496f0b686f7a355629f3f0080c97576

  • Size

    404KB

  • Sample

    240131-q8zktsdef2

  • MD5

    8496f0b686f7a355629f3f0080c97576

  • SHA1

    5b668cbc3cf72cd5b716ff119e105cdfcc675513

  • SHA256

    922c3b544a756d0925ad4c18373dd2af1d65470a2e0f2a5327ca4298c9bc7616

  • SHA512

    bd29fd826b8ea57ddaa24a3974b35f236e359d61159e288d9a447794ce7c7216def090a20ba544fcf3cd7f248efd8877658dbe8a3c48986fb3d7d7508dc953f4

  • SSDEEP

    12288:gquguAFcgwppjbq6s5iWE3wQ816etP1jnmN3WigVb:juguAepa5iP3q1nPFCGB

Score
10/10

Malware Config

Targets

    • Target

      8496f0b686f7a355629f3f0080c97576

    • Size

      404KB

    • MD5

      8496f0b686f7a355629f3f0080c97576

    • SHA1

      5b668cbc3cf72cd5b716ff119e105cdfcc675513

    • SHA256

      922c3b544a756d0925ad4c18373dd2af1d65470a2e0f2a5327ca4298c9bc7616

    • SHA512

      bd29fd826b8ea57ddaa24a3974b35f236e359d61159e288d9a447794ce7c7216def090a20ba544fcf3cd7f248efd8877658dbe8a3c48986fb3d7d7508dc953f4

    • SSDEEP

      12288:gquguAFcgwppjbq6s5iWE3wQ816etP1jnmN3WigVb:juguAepa5iP3q1nPFCGB

    Score
    10/10
    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

    • ModiLoader Second Stage

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Matrix

Tasks