Overview

overview

10

Static

static

3

73b1a3e668...0N.exe

windows7-x64

10

73b1a3e668...0N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    73b1a3e668468103d6d673460cbb11e0N.exe

  • Size

    27KB

  • Sample

    240727-av722svdrk

  • MD5

    73b1a3e668468103d6d673460cbb11e0

  • SHA1

    3e972a317f34766cf089a294ebf507de87ea3e01

  • SHA256

    ae21ddd0e9e64758188e24c407d2f81236cd6666bc2a2060239953b92fb40540

  • SHA512

    5ce3ab2721ceb10d141884ebea45acbce9539d39b34fe2c2c6c9f41354e5e6fe202ab051b8d85fd0fea95ef31ce3c74fcfc84524b1fd9a6e21125bcf381e9a62

  • SSDEEP

    768:6YJpFHSLyupC2/kB5cPeyyNI5IkPJ1NluUI:6YJpFHSOuopPcPe0RQ

Score
10/10
modiloaderdiscoverytrojan

Malware Config

Targets

    • Target

      73b1a3e668468103d6d673460cbb11e0N.exe

    • Size

      27KB

    • MD5

      73b1a3e668468103d6d673460cbb11e0

    • SHA1

      3e972a317f34766cf089a294ebf507de87ea3e01

    • SHA256

      ae21ddd0e9e64758188e24c407d2f81236cd6666bc2a2060239953b92fb40540

    • SHA512

      5ce3ab2721ceb10d141884ebea45acbce9539d39b34fe2c2c6c9f41354e5e6fe202ab051b8d85fd0fea95ef31ce3c74fcfc84524b1fd9a6e21125bcf381e9a62

    • SSDEEP

      768:6YJpFHSLyupC2/kB5cPeyyNI5IkPJ1NluUI:6YJpFHSOuopPcPe0RQ

    Score
    10/10
    modiloaderdiscoverytrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • ModiLoader Second Stage

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1
T1614

System Language Discovery

1
T1614.001

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks