modiloader | 3497176d4f9ee31403740c368cdef6a11a8177e281b0b528f7ca996c7bb1c7c4 | Triage

Submit
Reports

Overview

overview

Static

static

3

03deb3a3e4...18.exe

windows7-x64

1

03deb3a3e4...18.exe

windows10-2004-x64

Sharing

General

Target

03deb3a3e448c2e02fbb52e23ac7f892_JaffaCakes118
Size

457KB
Sample

240620-hv1xqszcjm
MD5

03deb3a3e448c2e02fbb52e23ac7f892
SHA1

b9712587a1cbd2ea2abe6b3f2e5ca9c595bd4ec0
SHA256

3497176d4f9ee31403740c368cdef6a11a8177e281b0b528f7ca996c7bb1c7c4
SHA512

e3b542c4fc1d77b66f714dc755291642913e354db97af9d93a33a2b1f338b1501f031dad659990be03a55be51b40d73baba094c5c924e8572d6ff51d0f261999
SSDEEP

12288:PjWeTasKE+aYYppnUyk1qb+VMPbJKKn+oGYSr:P6eT7KEgApUAw+FGYSr

Score

10^/10

modiloader trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

03deb3a3e448c2e02fbb52e23ac7f892_JaffaCakes118.exe

Resource

win7-20231129-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

03deb3a3e448c2e02fbb52e23ac7f892_JaffaCakes118.exe

Resource

win10v2004-20240611-en

modiloader trojan

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  03deb3a3e448c2e02fbb52e23ac7f892_JaffaCakes118
- Size
  
  457KB
- MD5
  
  03deb3a3e448c2e02fbb52e23ac7f892
- SHA1
  
  b9712587a1cbd2ea2abe6b3f2e5ca9c595bd4ec0
- SHA256
  
  3497176d4f9ee31403740c368cdef6a11a8177e281b0b528f7ca996c7bb1c7c4
- SHA512
  
  e3b542c4fc1d77b66f714dc755291642913e354db97af9d93a33a2b1f338b1501f031dad659990be03a55be51b40d73baba094c5c924e8572d6ff51d0f261999
- SSDEEP
  
  12288:PjWeTasKE+aYYppnUyk1qb+VMPbJKKn+oGYSr:P6eT7KEgApUAw+FGYSr
Score

10^/10

modiloader trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader Second Stage
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

modiloadertrojan

© 2018-2024

Terms | Privacy