modiloader | b48e4d3daa404fedabc6071277b3fef52eae7dde627168fe780816d0ff082ddc | Triage

Submit
Reports

Overview

overview

Static

static

3

6f9ae27a80...18.exe

windows7-x64

6f9ae27a80...18.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

6f9ae27a80a897d96ec9ca66fa7e3e90_JaffaCakes118
Size

520KB
Sample

240725-ptmr2syfpr
MD5

6f9ae27a80a897d96ec9ca66fa7e3e90
SHA1

5b4712f238c7a236dce4910e9f219625d103feeb
SHA256

b48e4d3daa404fedabc6071277b3fef52eae7dde627168fe780816d0ff082ddc
SHA512

ca56bd37e0deb12651d0ae24cc608af78b7a4276fb967c6d1113755eace6dc078cada30a14d93d3e73ed5c851fefa8c701ee9a18cf05a9bdcf3c39bb35299a2e
SSDEEP

12288:pEjqfwyIw/5+u/fYW/stF3Z4mxx+xPCjcngNPG:ijqrIw/L/gMIQmX/NPG

Score

10^/10

modiloader discovery trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

6f9ae27a80a897d96ec9ca66fa7e3e90_JaffaCakes118.exe

Resource

win7-20240704-en

modiloader discovery trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

6f9ae27a80a897d96ec9ca66fa7e3e90_JaffaCakes118.exe

Resource

win10v2004-20240709-en

modiloader discovery trojan

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  6f9ae27a80a897d96ec9ca66fa7e3e90_JaffaCakes118
- Size
  
  520KB
- MD5
  
  6f9ae27a80a897d96ec9ca66fa7e3e90
- SHA1
  
  5b4712f238c7a236dce4910e9f219625d103feeb
- SHA256
  
  b48e4d3daa404fedabc6071277b3fef52eae7dde627168fe780816d0ff082ddc
- SHA512
  
  ca56bd37e0deb12651d0ae24cc608af78b7a4276fb967c6d1113755eace6dc078cada30a14d93d3e73ed5c851fefa8c701ee9a18cf05a9bdcf3c39bb35299a2e
- SSDEEP
  
  12288:pEjqfwyIw/5+u/fYW/stF3Z4mxx+xPCjcngNPG:ijqrIw/L/gMIQmX/NPG
Score

10^/10

modiloader discovery trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader Second Stage
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

modiloaderdiscoverytrojan

behavioral2

modiloaderdiscoverytrojan

© 2018-2025

Terms | Privacy