General

  • Target

    849fb0dec0b4e8adf6972e068a778a1d

  • Size

    683KB

  • Sample

    240131-rhnw3sdgc8

  • MD5

    849fb0dec0b4e8adf6972e068a778a1d

  • SHA1

    b344f70455d92859c478002579b0cf07de67409a

  • SHA256

    7f97fafee3a52662355f262f66c2295e5d74de4765f13de86d8f1f1f7ec934ed

  • SHA512

    0cbd850fbea480bad9324626c64e1d8092f4314f78146d9173a1896faaf6ec2eb311d9405ad3a4938f19e842540829885b9b04bde68fb71f421c98552a8d87a1

  • SSDEEP

    12288:SERVq31AQHW3W4KlqckjwfIVLUe7f2wx/hCzJji6KTZ6+33TpdLodu:T3qeG4KUchcZ2PRm6Q3TvLodu

Score
10/10

Malware Config

Targets

    • Target

      849fb0dec0b4e8adf6972e068a778a1d

    • Size

      683KB

    • MD5

      849fb0dec0b4e8adf6972e068a778a1d

    • SHA1

      b344f70455d92859c478002579b0cf07de67409a

    • SHA256

      7f97fafee3a52662355f262f66c2295e5d74de4765f13de86d8f1f1f7ec934ed

    • SHA512

      0cbd850fbea480bad9324626c64e1d8092f4314f78146d9173a1896faaf6ec2eb311d9405ad3a4938f19e842540829885b9b04bde68fb71f421c98552a8d87a1

    • SSDEEP

      12288:SERVq31AQHW3W4KlqckjwfIVLUe7f2wx/hCzJji6KTZ6+33TpdLodu:T3qeG4KUchcZ2PRm6Q3TvLodu

    Score
    10/10
    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

    • ModiLoader Second Stage

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks