modiloader | ee94fc3b1a966f127a3d781eeba209d6813ed92e98350b7822cc4f93f7b08954 | Triage

Submit
Reports

Overview

overview

Static

static

02718718ec...18.exe

windows7-x64

02718718ec...18.exe

windows10-2004-x64

Sharing

General

Target

02718718ec47c226feb0bd8876326fa9_JaffaCakes118
Size

53KB
Sample

240620-d4fwps1cmk
MD5

02718718ec47c226feb0bd8876326fa9
SHA1

dea24d071218634d1e63d6b3fbff86ae1eaf05ce
SHA256

ee94fc3b1a966f127a3d781eeba209d6813ed92e98350b7822cc4f93f7b08954
SHA512

04db2fb1471b3af220ff9ae951a8c57efd272bd88ac806773bffebdcefcb925b90d7704e583bc6ffc904fc7b15e3557505c43f26a12c8689445d4bbfd8bebde6
SSDEEP

768:lCYqjsS46HAa6pVLljIZU8bfskpxlT1nTiirlQ:UYqg5Va4OZU8bfskrlT1nTiirlQ

Score

10^/10

modiloader trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

02718718ec47c226feb0bd8876326fa9_JaffaCakes118.exe

Resource

win7-20240508-en

modiloader trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

02718718ec47c226feb0bd8876326fa9_JaffaCakes118.exe

Resource

win10v2004-20240508-en

modiloader trojan

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  02718718ec47c226feb0bd8876326fa9_JaffaCakes118
- Size
  
  53KB
- MD5
  
  02718718ec47c226feb0bd8876326fa9
- SHA1
  
  dea24d071218634d1e63d6b3fbff86ae1eaf05ce
- SHA256
  
  ee94fc3b1a966f127a3d781eeba209d6813ed92e98350b7822cc4f93f7b08954
- SHA512
  
  04db2fb1471b3af220ff9ae951a8c57efd272bd88ac806773bffebdcefcb925b90d7704e583bc6ffc904fc7b15e3557505c43f26a12c8689445d4bbfd8bebde6
- SSDEEP
  
  768:lCYqjsS46HAa6pVLljIZU8bfskpxlT1nTiirlQ:UYqg5Va4OZU8bfskrlT1nTiirlQ
Score

10^/10

modiloader trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader Second Stage
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

modiloadertrojan

behavioral2

modiloadertrojan

© 2018-2024

Terms | Privacy