modiloader | ee8bb17b29c350019de834663898767f6a2e53341b5af7d606ecd9c6b8f5e4aa | Triage

Submit
Reports

Overview

overview

Static

static

3

02f2cf085e...18.exe

windows7-x64

02f2cf085e...18.exe

windows10-2004-x64

Sharing

General

Target

02f2cf085e68878772b165fd8f08fb9d_JaffaCakes118
Size

164KB
Sample

240620-fhdwbsthrm
MD5

02f2cf085e68878772b165fd8f08fb9d
SHA1

c21ec6af7b6803f2318b2977be23ee6d4a1458d2
SHA256

ee8bb17b29c350019de834663898767f6a2e53341b5af7d606ecd9c6b8f5e4aa
SHA512

9aca6130a91ea90e5bbcd9a8f57b7a803a77d54bf119dd8f6bacf0bde1f6759f4c8406e79656da65fc636a9787ff1bec0ec841903dff562b21d930369d6fd043
SSDEEP

3072:amZXdmmXxLg7GkK4ymIpaKjfFMFZt4+4SqyR+6yiO+NrVFxp/r/RGLOfx:amHHRdkhgaQfQCDxyR+zidVpDRrJ

Score

10^/10

modiloader trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

02f2cf085e68878772b165fd8f08fb9d_JaffaCakes118.exe

Resource

win7-20240611-en

modiloader trojan upx

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

02f2cf085e68878772b165fd8f08fb9d_JaffaCakes118.exe

Resource

win10v2004-20240508-en

modiloader trojan upx

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  02f2cf085e68878772b165fd8f08fb9d_JaffaCakes118
- Size
  
  164KB
- MD5
  
  02f2cf085e68878772b165fd8f08fb9d
- SHA1
  
  c21ec6af7b6803f2318b2977be23ee6d4a1458d2
- SHA256
  
  ee8bb17b29c350019de834663898767f6a2e53341b5af7d606ecd9c6b8f5e4aa
- SHA512
  
  9aca6130a91ea90e5bbcd9a8f57b7a803a77d54bf119dd8f6bacf0bde1f6759f4c8406e79656da65fc636a9787ff1bec0ec841903dff562b21d930369d6fd043
- SSDEEP
  
  3072:amZXdmmXxLg7GkK4ymIpaKjfFMFZt4+4SqyR+6yiO+NrVFxp/r/RGLOfx:amHHRdkhgaQfQCDxyR+zidVpDRrJ
Score

10^/10

modiloader trojan upx
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader Second Stage
- Deletes itself
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

modiloadertrojanupx

behavioral2

modiloadertrojanupx

© 2018-2024

Terms | Privacy