modiloader | b34ccdb184415def7a42b553448a471cf6e4ef39e980e05faa4e707ca9cfe9b4 | Triage

Submit
Reports

Overview

overview

Static

static

3

73d9a66ccf...18.exe

windows7-x64

73d9a66ccf...18.exe

windows10-2004-x64

Sharing

General

Target

73d9a66ccfb39c7668dd1253a0ad878a_JaffaCakes118
Size

711KB
Sample

240726-njjf7sycnh
MD5

73d9a66ccfb39c7668dd1253a0ad878a
SHA1

38e64dcda54885867e1cbcea099b41fe6cbd83b3
SHA256

b34ccdb184415def7a42b553448a471cf6e4ef39e980e05faa4e707ca9cfe9b4
SHA512

3e4b252ab7221fbc9025e2f4d01b7124c44b4c6ea6ce7a3cf80621c10f953149a048c70e1d220fad4481d298394a93d15f27610de5865ce5deddc454217359ad
SSDEEP

12288:Nc//////XiBs2/tq9XClhfoQ/EYTcurjph29k5/t+6MI0uh8QORXLH5Qc/DSr1OT:Nc//////SBs2tiXCvfoQcGZ69kz0pzt9

Score

10^/10

modiloader discovery trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

73d9a66ccfb39c7668dd1253a0ad878a_JaffaCakes118.exe

Resource

win7-20240708-en

modiloader discovery trojan

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

73d9a66ccfb39c7668dd1253a0ad878a_JaffaCakes118.exe

Resource

win10v2004-20240704-en

modiloader discovery trojan

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  73d9a66ccfb39c7668dd1253a0ad878a_JaffaCakes118
- Size
  
  711KB
- MD5
  
  73d9a66ccfb39c7668dd1253a0ad878a
- SHA1
  
  38e64dcda54885867e1cbcea099b41fe6cbd83b3
- SHA256
  
  b34ccdb184415def7a42b553448a471cf6e4ef39e980e05faa4e707ca9cfe9b4
- SHA512
  
  3e4b252ab7221fbc9025e2f4d01b7124c44b4c6ea6ce7a3cf80621c10f953149a048c70e1d220fad4481d298394a93d15f27610de5865ce5deddc454217359ad
- SSDEEP
  
  12288:Nc//////XiBs2/tq9XClhfoQ/EYTcurjph29k5/t+6MI0uh8QORXLH5Qc/DSr1OT:Nc//////SBs2tiXCvfoQcGZ69kz0pzt9
Score

10^/10

modiloader discovery trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader Second Stage
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

modiloaderdiscoverytrojan

behavioral2

modiloaderdiscoverytrojan

© 2018-2024

Terms | Privacy