General

  • Target

    84c071d508de5acbcc285a55b7cd9727

  • Size

    327KB

  • Sample

    240131-snhgxsggcj

  • MD5

    84c071d508de5acbcc285a55b7cd9727

  • SHA1

    6a7f09b228b5b9c9c7997410b707da0cd56b9565

  • SHA256

    5b64bf12d8f975f17ba8d90b62bd76be3f987c0f469b42726ae22370f70ce115

  • SHA512

    6367bfc5971121f661b7f5b11ac152e302c465753c154fb3aad080e0c674fa43ca98bc835c9bded49cdac4f5be908859105003118140a203e123b7f6bbb90c90

  • SSDEEP

    3072:GjpaxGaPp8Fpt4nDf+RkrXVO7t8LGcnYx/n6eG/6dLAVNPpIY:GjkxGbLOnDf+RkxZLrYx/n6eG/6dLO1

Score
10/10

Malware Config

Targets

    • Target

      84c071d508de5acbcc285a55b7cd9727

    • Size

      327KB

    • MD5

      84c071d508de5acbcc285a55b7cd9727

    • SHA1

      6a7f09b228b5b9c9c7997410b707da0cd56b9565

    • SHA256

      5b64bf12d8f975f17ba8d90b62bd76be3f987c0f469b42726ae22370f70ce115

    • SHA512

      6367bfc5971121f661b7f5b11ac152e302c465753c154fb3aad080e0c674fa43ca98bc835c9bded49cdac4f5be908859105003118140a203e123b7f6bbb90c90

    • SSDEEP

      3072:GjpaxGaPp8Fpt4nDf+RkrXVO7t8LGcnYx/n6eG/6dLAVNPpIY:GjkxGbLOnDf+RkxZLrYx/n6eG/6dLO1

    Score
    10/10
    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

    • ModiLoader Second Stage

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks