modiloader | 24e742bfb1c40f466eeec9d6f7dcb5a44ddeba462ea9b549144001343648b729 | Triage

Submit
Reports

Overview

overview

Static

static

3

00088f0045...18.exe

windows7-x64

00088f0045...18.exe

windows10-2004-x64

Sharing

General

Target

00088f0045ec4c38cfce5fb7439e7cd0_JaffaCakes118
Size

172KB
Sample

240619-xgk2pawhmb
MD5

00088f0045ec4c38cfce5fb7439e7cd0
SHA1

7fb73fd566b03f408740cd7230e1dfcdeff162cd
SHA256

24e742bfb1c40f466eeec9d6f7dcb5a44ddeba462ea9b549144001343648b729
SHA512

dfdc582b0dd2a1669648af69dbbb093c42df37582d65368501e120ebaad91d2eeea3fce28547c85859a196cf16d75e9fe425edcd4e934cec49c105a11f77eff5
SSDEEP

3072:2ftS4+XWK71qcP1JUHVs0aUnRM0y++8aYM3YdQDeu9TjPJCDF4s8dXPN2sYsEUf:2f4WK71FtJ660aUnSVovuTjPJCDEVVr

Score

10^/10

modiloader trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

00088f0045ec4c38cfce5fb7439e7cd0_JaffaCakes118.exe

Resource

win7-20240220-en

modiloader trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

00088f0045ec4c38cfce5fb7439e7cd0_JaffaCakes118.exe

Resource

win10v2004-20240611-en

modiloader trojan

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  00088f0045ec4c38cfce5fb7439e7cd0_JaffaCakes118
- Size
  
  172KB
- MD5
  
  00088f0045ec4c38cfce5fb7439e7cd0
- SHA1
  
  7fb73fd566b03f408740cd7230e1dfcdeff162cd
- SHA256
  
  24e742bfb1c40f466eeec9d6f7dcb5a44ddeba462ea9b549144001343648b729
- SHA512
  
  dfdc582b0dd2a1669648af69dbbb093c42df37582d65368501e120ebaad91d2eeea3fce28547c85859a196cf16d75e9fe425edcd4e934cec49c105a11f77eff5
- SSDEEP
  
  3072:2ftS4+XWK71qcP1JUHVs0aUnRM0y++8aYM3YdQDeu9TjPJCDF4s8dXPN2sYsEUf:2f4WK71FtJ660aUnSVovuTjPJCDEVVr
Score

10^/10

modiloader trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader Second Stage
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

modiloadertrojan

behavioral2

modiloadertrojan

© 2018-2024

Terms | Privacy