General

  • Target

    8c33e529ddf1e4a91544548a66462e3c

  • Size

    275KB

  • Sample

    240203-nhtwjsfgf7

  • MD5

    8c33e529ddf1e4a91544548a66462e3c

  • SHA1

    d20297d3096e62703a48c2ef04baf92ca111d16d

  • SHA256

    4a08c2a01b0a1ada4459caa1c7e5f13e0180d3e346f822c1b768b60e3702f9b4

  • SHA512

    37a55bd96d5fb47b6613ec29059468e40ea6782cb3c19fee2c2e470f1f1c7d4b71da8f1f486aa932fb869399c30bf7be9f306769a7bac46eb88694fc0c0663d7

  • SSDEEP

    6144:+lXb4JDQoNSWiwassZFbuPZYHNv/5rH4+af2rJpT/YSnNBzp:0b4J/sqascFQqtv/V4NfkJpT/L

Malware Config

Targets

    • Target

      8c33e529ddf1e4a91544548a66462e3c

    • Size

      275KB

    • MD5

      8c33e529ddf1e4a91544548a66462e3c

    • SHA1

      d20297d3096e62703a48c2ef04baf92ca111d16d

    • SHA256

      4a08c2a01b0a1ada4459caa1c7e5f13e0180d3e346f822c1b768b60e3702f9b4

    • SHA512

      37a55bd96d5fb47b6613ec29059468e40ea6782cb3c19fee2c2e470f1f1c7d4b71da8f1f486aa932fb869399c30bf7be9f306769a7bac46eb88694fc0c0663d7

    • SSDEEP

      6144:+lXb4JDQoNSWiwassZFbuPZYHNv/5rH4+af2rJpT/YSnNBzp:0b4J/sqascFQqtv/V4NfkJpT/L

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

    • Modifies WinLogon for persistence

    • ModiLoader Second Stage

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks