modiloader | 3a5f033cf4ee8b35331a0f33d4692b4188e5fc7a9747a8635d317ff3ccd49600 | Triage

Submit
Reports

Overview

overview

Static

static

3

7399b04ed2...18.exe

windows7-x64

7399b04ed2...18.exe

windows10-2004-x64

Sharing

General

Target

7399b04ed244435c4d082b45a95c3ee7_JaffaCakes118
Size

588KB
Sample

240726-l6yhja1blp
MD5

7399b04ed244435c4d082b45a95c3ee7
SHA1

255fe7bb5c55c9751d2f6a6c09db14c4cd091676
SHA256

3a5f033cf4ee8b35331a0f33d4692b4188e5fc7a9747a8635d317ff3ccd49600
SHA512

a0baad8992538bb8f828d88f425efb53a9979de23d0417ee0bbd060189daa2c015b90472ca431036bb860826df5e3e5bcbd0ac86dd2d0fcb21b0fde9fdfa501f
SSDEEP

12288:CV2B6B7wwpuKO9vPYPN+Hb2aSkmIF3Z4mxxl+utJ2An+f0m6:CUBYBshHq+7W6QmXl/w9fi

Score

10^/10

modiloader discovery trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

7399b04ed244435c4d082b45a95c3ee7_JaffaCakes118.exe

Resource

win7-20240708-en

modiloader discovery trojan

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

7399b04ed244435c4d082b45a95c3ee7_JaffaCakes118.exe

Resource

win10v2004-20240709-en

modiloader discovery trojan

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  7399b04ed244435c4d082b45a95c3ee7_JaffaCakes118
- Size
  
  588KB
- MD5
  
  7399b04ed244435c4d082b45a95c3ee7
- SHA1
  
  255fe7bb5c55c9751d2f6a6c09db14c4cd091676
- SHA256
  
  3a5f033cf4ee8b35331a0f33d4692b4188e5fc7a9747a8635d317ff3ccd49600
- SHA512
  
  a0baad8992538bb8f828d88f425efb53a9979de23d0417ee0bbd060189daa2c015b90472ca431036bb860826df5e3e5bcbd0ac86dd2d0fcb21b0fde9fdfa501f
- SSDEEP
  
  12288:CV2B6B7wwpuKO9vPYPN+Hb2aSkmIF3Z4mxxl+utJ2An+f0m6:CUBYBshHq+7W6QmXl/w9fi
Score

10^/10

modiloader discovery trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader Second Stage
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

modiloaderdiscoverytrojan

behavioral2

modiloaderdiscoverytrojan

© 2018-2024

Terms | Privacy