modiloader | 81d7e9b17f9a1122b2dab1920b4174316656dbbc9504ac35d1202727de5ee4e3 | Triage

Submit
Reports

Overview

overview

Static

static

3

6d796eb807...18.exe

windows7-x64

6d796eb807...18.exe

windows10-2004-x64

Sharing

General

Target

6d796eb8076512e867bfc7fbbbd185cc_JaffaCakes118
Size

253KB
Sample

240524-f6zspsfa88
MD5

6d796eb8076512e867bfc7fbbbd185cc
SHA1

3123b1b1f2a93ce82f26769b3c4e48c5af031503
SHA256

81d7e9b17f9a1122b2dab1920b4174316656dbbc9504ac35d1202727de5ee4e3
SHA512

7f2b81c24121163c64e0bf648ed366643d2079311ddb3a34e181606d72d56174d3e8c8d3491354612b21df57063c47ae91195b13e35ca858425303ab8a0675c2
SSDEEP

3072:KxKNLNEf5scWADv2+DAMKqur5gWrtonM95Jiy/U5rKN20Nn8fLsUYo3F5lA9j:A2coqsSYTgK00Nn8zsW39AJ

Score

10^/10

modiloader trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

6d796eb8076512e867bfc7fbbbd185cc_JaffaCakes118.exe

Resource

win7-20240221-en

modiloader trojan

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

6d796eb8076512e867bfc7fbbbd185cc_JaffaCakes118.exe

Resource

win10v2004-20240426-en

modiloader trojan

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  6d796eb8076512e867bfc7fbbbd185cc_JaffaCakes118
- Size
  
  253KB
- MD5
  
  6d796eb8076512e867bfc7fbbbd185cc
- SHA1
  
  3123b1b1f2a93ce82f26769b3c4e48c5af031503
- SHA256
  
  81d7e9b17f9a1122b2dab1920b4174316656dbbc9504ac35d1202727de5ee4e3
- SHA512
  
  7f2b81c24121163c64e0bf648ed366643d2079311ddb3a34e181606d72d56174d3e8c8d3491354612b21df57063c47ae91195b13e35ca858425303ab8a0675c2
- SSDEEP
  
  3072:KxKNLNEf5scWADv2+DAMKqur5gWrtonM95Jiy/U5rKN20Nn8fLsUYo3F5lA9j:A2coqsSYTgK00Nn8zsW39AJ
Score

10^/10

modiloader trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader Second Stage
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

modiloadertrojan

behavioral2

modiloadertrojan

© 2018-2024

Terms | Privacy