modiloader | 5e41782b105ee6f9ecf06a3c8aee4f35306a7f1b2b5940d48b729ecd835a3a08 | Triage

Submit
Reports

Overview

overview

Static

static

3

748fca4ee9...18.exe

windows7-x64

748fca4ee9...18.exe

windows10-2004-x64

Sharing

General

Target

748fca4ee95f6ae348f49062cfd61f67_JaffaCakes118
Size

308KB
Sample

240726-sh3kxayerb
MD5

748fca4ee95f6ae348f49062cfd61f67
SHA1

356fe62222cbba91bc0654f496766948cfdbde43
SHA256

5e41782b105ee6f9ecf06a3c8aee4f35306a7f1b2b5940d48b729ecd835a3a08
SHA512

942cba4c267556a506eed66dd239205fef8f24b46928b3e4da38373f92d285332d2b3e5234b967a424d0046c292a42173eec4b480744a8ddbc88b3f2c976004c
SSDEEP

6144:1eBeMAugV60uU4EGkgb4RysJ/yQQa6RbCnYrzGAHxW/ffm:1b85Pzqys9yNaYbG0xk3m

Score

10^/10

modiloader discovery trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

748fca4ee95f6ae348f49062cfd61f67_JaffaCakes118.exe

Resource

win7-20240704-en

modiloader discovery trojan

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

748fca4ee95f6ae348f49062cfd61f67_JaffaCakes118.exe

Resource

win10v2004-20240709-en

modiloader discovery trojan

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  748fca4ee95f6ae348f49062cfd61f67_JaffaCakes118
- Size
  
  308KB
- MD5
  
  748fca4ee95f6ae348f49062cfd61f67
- SHA1
  
  356fe62222cbba91bc0654f496766948cfdbde43
- SHA256
  
  5e41782b105ee6f9ecf06a3c8aee4f35306a7f1b2b5940d48b729ecd835a3a08
- SHA512
  
  942cba4c267556a506eed66dd239205fef8f24b46928b3e4da38373f92d285332d2b3e5234b967a424d0046c292a42173eec4b480744a8ddbc88b3f2c976004c
- SSDEEP
  
  6144:1eBeMAugV60uU4EGkgb4RysJ/yQQa6RbCnYrzGAHxW/ffm:1b85Pzqys9yNaYbG0xk3m
Score

10^/10

modiloader discovery trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader Second Stage
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

modiloaderdiscoverytrojan

behavioral2

modiloaderdiscoverytrojan

© 2018-2024

Terms | Privacy