modiloader | dcce71d13f61f3c0dbf69e8a4a57de81d41277b585b057b4ed6e0cf49a4bb3da | Triage

Submit
Reports

Overview

overview

Static

static

3

ff5e286344...18.exe

windows7-x64

ff5e286344...18.exe

windows10-2004-x64

Sharing

General

Target

ff5e2863440153305ea8cab67fecb2be_JaffaCakes118
Size

594KB
Sample

240421-qk7arscc75
MD5

ff5e2863440153305ea8cab67fecb2be
SHA1

5179ac947392efd76acf66ca6e2349a394f23b0e
SHA256

dcce71d13f61f3c0dbf69e8a4a57de81d41277b585b057b4ed6e0cf49a4bb3da
SHA512

6c4211f91609ce1eb743b278e70a5b87b22861d0ee3c718bc1d8070df31b25b716668752cb83278f77004287aef1d2ff9adebced9a1ef62b78b861bf45075286
SSDEEP

12288:Hx0FzFNxTG9ppkAUzEFHquQHnF3Z4mxxj7sIcOa/Y91TVK9:Hx0P69+ERQHnQmXnsINwr9

Score

10^/10

modiloader trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ff5e2863440153305ea8cab67fecb2be_JaffaCakes118.exe

Resource

win7-20240221-en

modiloader trojan

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

ff5e2863440153305ea8cab67fecb2be_JaffaCakes118.exe

Resource

win10v2004-20240226-en

modiloader trojan

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  ff5e2863440153305ea8cab67fecb2be_JaffaCakes118
- Size
  
  594KB
- MD5
  
  ff5e2863440153305ea8cab67fecb2be
- SHA1
  
  5179ac947392efd76acf66ca6e2349a394f23b0e
- SHA256
  
  dcce71d13f61f3c0dbf69e8a4a57de81d41277b585b057b4ed6e0cf49a4bb3da
- SHA512
  
  6c4211f91609ce1eb743b278e70a5b87b22861d0ee3c718bc1d8070df31b25b716668752cb83278f77004287aef1d2ff9adebced9a1ef62b78b861bf45075286
- SSDEEP
  
  12288:Hx0FzFNxTG9ppkAUzEFHquQHnF3Z4mxxj7sIcOa/Y91TVK9:Hx0P69+ERQHnQmXnsINwr9
Score

10^/10

modiloader trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader Second Stage
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

modiloadertrojan

behavioral2

modiloadertrojan

© 2018-2024

Terms | Privacy