General

  • Target

    dd76102a09afe659603b77fcdb74bab9

  • Size

    389KB

  • Sample

    240325-g87f1adb2s

  • MD5

    dd76102a09afe659603b77fcdb74bab9

  • SHA1

    db0fe0fdd8427b5c27ef2cbd59a20408dee4b0d9

  • SHA256

    6c3b1cecd379c7f0cd2cda79dd39a0652e4a3a0aeacf2fb0963406f362bf6d83

  • SHA512

    fd7e5c41d72a03bae8e128f097910f5dc2a957f04812e733ecc6652ae9cff781230acd6e1e1a5943e26526077b3edb86e0ed16eb9610149951078d060cf02880

  • SSDEEP

    6144:ruJxtmL2mXkQqGjbnGu6n104sAhfz6/qAnHl/ie/GHejLuArTGTw3kUC:raxtmLVHF1RUOSe/HHTAuC

Score
10/10

Malware Config

Targets

    • Target

      dd76102a09afe659603b77fcdb74bab9

    • Size

      389KB

    • MD5

      dd76102a09afe659603b77fcdb74bab9

    • SHA1

      db0fe0fdd8427b5c27ef2cbd59a20408dee4b0d9

    • SHA256

      6c3b1cecd379c7f0cd2cda79dd39a0652e4a3a0aeacf2fb0963406f362bf6d83

    • SHA512

      fd7e5c41d72a03bae8e128f097910f5dc2a957f04812e733ecc6652ae9cff781230acd6e1e1a5943e26526077b3edb86e0ed16eb9610149951078d060cf02880

    • SSDEEP

      6144:ruJxtmL2mXkQqGjbnGu6n104sAhfz6/qAnHl/ie/GHejLuArTGTw3kUC:raxtmLVHF1RUOSe/HHTAuC

    Score
    10/10
    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

    • ModiLoader Second Stage

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks