modiloader | 27b0ea9eb270eb0dc913e8bc7788123f29a14c783e0e24d8f3cadc6deb8d5c7c | Triage

Submit
Reports

Overview

overview

Static

static

3

35b2ac2990...18.exe

windows7-x64

35b2ac2990...18.exe

windows10-2004-x64

Sharing

General

Target

35b2ac29905155d4b887d6adecf04297_JaffaCakes118
Size

300KB
Sample

240710-v3n95azgmp
MD5

35b2ac29905155d4b887d6adecf04297
SHA1

f22a7b395cdaedee01e7c8d77d214a83c80a32b5
SHA256

27b0ea9eb270eb0dc913e8bc7788123f29a14c783e0e24d8f3cadc6deb8d5c7c
SHA512

9486a59b5c74a6dfb93acae38056b639fb68c78376aa9397a4535e54feb071701c22b340614bb6f56bdcf622b8e23811dfd4871fa2640ff5136357ec55fc16c0
SSDEEP

6144:afgHVojsI/MMmdNIwAMqcxDlcmKOmL3WxWUmgsu1C3rTS+tGtNiggjK:K08MbAMqiDlxKOmLtZuirTSGGPkK

Score

10^/10

modiloader defense_evasion trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

35b2ac29905155d4b887d6adecf04297_JaffaCakes118.exe

Resource

win7-20240704-en

modiloader defense_evasion trojan

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

35b2ac29905155d4b887d6adecf04297_JaffaCakes118.exe

Resource

win10v2004-20240709-en

modiloader defense_evasion trojan

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  35b2ac29905155d4b887d6adecf04297_JaffaCakes118
- Size
  
  300KB
- MD5
  
  35b2ac29905155d4b887d6adecf04297
- SHA1
  
  f22a7b395cdaedee01e7c8d77d214a83c80a32b5
- SHA256
  
  27b0ea9eb270eb0dc913e8bc7788123f29a14c783e0e24d8f3cadc6deb8d5c7c
- SHA512
  
  9486a59b5c74a6dfb93acae38056b639fb68c78376aa9397a4535e54feb071701c22b340614bb6f56bdcf622b8e23811dfd4871fa2640ff5136357ec55fc16c0
- SSDEEP
  
  6144:afgHVojsI/MMmdNIwAMqcxDlcmKOmL3WxWUmgsu1C3rTS+tGtNiggjK:K08MbAMqiDlxKOmLtZuirTSGGPkK
Score

10^/10

modiloader defense_evasion trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader Second Stage
- Impair Defenses: Safe Mode Boot
  defense_evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Safe Mode Boot

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

modiloaderdefense_evasiontrojan

behavioral2

modiloaderdefense_evasiontrojan

© 2018-2025

Terms | Privacy