General
-
Target
00b0f2a6e491fe0215b19a0037dbed36.bin
-
Size
481KB
-
Sample
240621-cnllkszdnj
-
MD5
00b0f2a6e491fe0215b19a0037dbed36
-
SHA1
0744ae66e734d9f7e642960df5fbcddfc3d636ed
-
SHA256
f051f15c5c975891df9dad69444ff66f0a45cdc5bd19ec16be1aa8d4075f0ceb
-
SHA512
570eef6e604a2277b59cfdb835f4840e333fdd812c5c79e28fda5216488783595dfb74f140c10f89a40d2c75d0e3c379bd95a61be81b52668e95a6cd618ff3fb
-
SSDEEP
12288:UJ4kS6ROujO+a/kq1bpvgcrQ0pgjCVkUZbOebJJvH/:JPkhy+a/kqlWczgjCVkU9OUJvH/
Static task
static1
Behavioral task
behavioral1
Sample
00b0f2a6e491fe0215b19a0037dbed36.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
00b0f2a6e491fe0215b19a0037dbed36.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
00b0f2a6e491fe0215b19a0037dbed36.bin
-
Size
481KB
-
MD5
00b0f2a6e491fe0215b19a0037dbed36
-
SHA1
0744ae66e734d9f7e642960df5fbcddfc3d636ed
-
SHA256
f051f15c5c975891df9dad69444ff66f0a45cdc5bd19ec16be1aa8d4075f0ceb
-
SHA512
570eef6e604a2277b59cfdb835f4840e333fdd812c5c79e28fda5216488783595dfb74f140c10f89a40d2c75d0e3c379bd95a61be81b52668e95a6cd618ff3fb
-
SSDEEP
12288:UJ4kS6ROujO+a/kq1bpvgcrQ0pgjCVkUZbOebJJvH/:JPkhy+a/kqlWczgjCVkU9OUJvH/
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Loads dropped DLL
-