modiloader | 9d0b0c899232ba29d0a084b072ef91fe1f759484394bf5112b9a32659169f6cd | Triage

Submit
Reports

Overview

overview

Static

static

74ab156e39...18.exe

windows7-x64

74ab156e39...18.exe

windows10-2004-x64

Sharing

General

Target

74ab156e39f57298adf12bbb34fa70cc_JaffaCakes118
Size

699KB
Sample

240726-s4ee7szgma
MD5

74ab156e39f57298adf12bbb34fa70cc
SHA1

2e4d0d9a6d64f9fc39efcc8bf5e27465c1025ee5
SHA256

9d0b0c899232ba29d0a084b072ef91fe1f759484394bf5112b9a32659169f6cd
SHA512

bfcf9d5e556456f9890bdf67af4c150936e4cb5bfabd34b441d0f78f533ca0ec4c1df75cc872d74934a5e1c448095651fb91c47f7c4d76a0e5dbe44c2d7f3e09
SSDEEP

12288:ZsWdVgX1MwKcjZ+fEEIjEOyk/AXqUuQrX2Y5f4ZxRWEmwvTAWjR3:Rzg6wKcV+sECkXjrm4+swvTAwR3

Score

10^/10

modiloader discovery trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

74ab156e39f57298adf12bbb34fa70cc_JaffaCakes118.exe

Resource

win7-20240708-en

modiloader discovery trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

74ab156e39f57298adf12bbb34fa70cc_JaffaCakes118.exe

Resource

win10v2004-20240709-en

modiloader discovery trojan

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  74ab156e39f57298adf12bbb34fa70cc_JaffaCakes118
- Size
  
  699KB
- MD5
  
  74ab156e39f57298adf12bbb34fa70cc
- SHA1
  
  2e4d0d9a6d64f9fc39efcc8bf5e27465c1025ee5
- SHA256
  
  9d0b0c899232ba29d0a084b072ef91fe1f759484394bf5112b9a32659169f6cd
- SHA512
  
  bfcf9d5e556456f9890bdf67af4c150936e4cb5bfabd34b441d0f78f533ca0ec4c1df75cc872d74934a5e1c448095651fb91c47f7c4d76a0e5dbe44c2d7f3e09
- SSDEEP
  
  12288:ZsWdVgX1MwKcjZ+fEEIjEOyk/AXqUuQrX2Y5f4ZxRWEmwvTAWjR3:Rzg6wKcV+sECkXjrm4+swvTAwR3
Score

10^/10

modiloader discovery trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader Second Stage
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

modiloaderdiscoverytrojan

behavioral2

modiloaderdiscoverytrojan

© 2018-2024

Terms | Privacy