Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

9ab78b703e...0b.exe

windows7-x64

10

9ab78b703e...0b.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9ab78b703e248f58de1a797591c6630b

  • Size

    765KB

  • Sample

    240214-eqjacahg76

  • MD5

    9ab78b703e248f58de1a797591c6630b

  • SHA1

    a59946346b8f875cc7ad6c0024db14da8928fa74

  • SHA256

    9667031ee31c3492a484e102744829c6e83fec13c37a3a2c95a1679cb6aef59a

  • SHA512

    c68f78d5f0709da8ff82445d26cf563d8001fae3abe42dc6008bf33aa6ec81386ead83e016321de98d1f9f4ac3ba4e6665fa58e64bc0993a557bb7ef9441dda7

  • SSDEEP

    12288:NtPUekZkx1AEyYmueCkXyShXz2/iINCM3V5TDXTLwc9RdvK:NtnexEyYmufzyo/YcXDXTBHy

Score
10/10
modiloadertrojan

Malware Config

Targets

    • Target

      9ab78b703e248f58de1a797591c6630b

    • Size

      765KB

    • MD5

      9ab78b703e248f58de1a797591c6630b

    • SHA1

      a59946346b8f875cc7ad6c0024db14da8928fa74

    • SHA256

      9667031ee31c3492a484e102744829c6e83fec13c37a3a2c95a1679cb6aef59a

    • SHA512

      c68f78d5f0709da8ff82445d26cf563d8001fae3abe42dc6008bf33aa6ec81386ead83e016321de98d1f9f4ac3ba4e6665fa58e64bc0993a557bb7ef9441dda7

    • SSDEEP

      12288:NtPUekZkx1AEyYmueCkXyShXz2/iINCM3V5TDXTLwc9RdvK:NtnexEyYmufzyo/YcXDXTBHy

    Score
    10/10
    modiloadertrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • ModiLoader Second Stage

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks