modiloader | 7d541256186fb81f8a16fd7f0b5ee7c9a151d2de019f25395b3ab9985ec56d9e | Triage

Submit
Reports

Overview

overview

Static

static

0400103aef...18.exe

windows7-x64

0400103aef...18.exe

windows10-2004-x64

Sharing

General

Target

0400103aef56f7c879f1574451b5d51e_JaffaCakes118
Size

516KB
Sample

240620-h8qc6awbnd
MD5

0400103aef56f7c879f1574451b5d51e
SHA1

a7acfb026cb239c42c9041778c4639791ded25c0
SHA256

7d541256186fb81f8a16fd7f0b5ee7c9a151d2de019f25395b3ab9985ec56d9e
SHA512

fadfe58b29b80259b4ba1f9f46e5984145e87de3096b88c0975204b7164acf1dd428768308668e64dfe15fa64ec38b2144e85cc2af7724e510dbfd39e344ecf0
SSDEEP

6144:hHJq/2D6XF0dnBi8QS4VKkEUzhgyoaAlGCC3fdPYZTrvseAOpxN4T72pUa9rPVlR:q/2mXFJ71VFBZYZcCp74WpUWZYAF

Score

10^/10

modiloader trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

0400103aef56f7c879f1574451b5d51e_JaffaCakes118.exe

Resource

win7-20240611-en

modiloader trojan

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

0400103aef56f7c879f1574451b5d51e_JaffaCakes118.exe

Resource

win10v2004-20240508-en

modiloader trojan

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  0400103aef56f7c879f1574451b5d51e_JaffaCakes118
- Size
  
  516KB
- MD5
  
  0400103aef56f7c879f1574451b5d51e
- SHA1
  
  a7acfb026cb239c42c9041778c4639791ded25c0
- SHA256
  
  7d541256186fb81f8a16fd7f0b5ee7c9a151d2de019f25395b3ab9985ec56d9e
- SHA512
  
  fadfe58b29b80259b4ba1f9f46e5984145e87de3096b88c0975204b7164acf1dd428768308668e64dfe15fa64ec38b2144e85cc2af7724e510dbfd39e344ecf0
- SSDEEP
  
  6144:hHJq/2D6XF0dnBi8QS4VKkEUzhgyoaAlGCC3fdPYZTrvseAOpxN4T72pUa9rPVlR:q/2mXFJ71VFBZYZcCp74WpUWZYAF
Score

10^/10

modiloader trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader Second Stage
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

modiloadertrojan

behavioral2

modiloadertrojan

© 2018-2024

Terms | Privacy