modiloader | 465db1882d529caea843c95842f5572ed28596ad165178989a48455cad295724 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

3

9409e6bfaa...18.exe

windows7-x64

9409e6bfaa...18.exe

windows10-2004-x64

Sharing

General

Target

9409e6bfaaf19c6f843798b7527ababc_JaffaCakes118
Size

297KB
Sample

240813-vz5gya1fpk
MD5

9409e6bfaaf19c6f843798b7527ababc
SHA1

16c817a55c44be4770296468a15fad4268a118c3
SHA256

465db1882d529caea843c95842f5572ed28596ad165178989a48455cad295724
SHA512

e475f93ca24f7166923d183789178baf1f79e43aa34e2d17ac815e2b9ca6ecb848b1fbda6120cdab7149910d4d17ee7abde73eecbcf81b88eb2e6f423df459c3
SSDEEP

6144:kF0bfde3syUk+rYruA30orIFRFSoOXhoMfm23T:dbU3WYCA30or4PSl2Ml

Score

10^/10

modiloader discovery trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

9409e6bfaaf19c6f843798b7527ababc_JaffaCakes118.exe

Resource

win7-20240705-en

modiloader discovery trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

9409e6bfaaf19c6f843798b7527ababc_JaffaCakes118.exe

Resource

win10v2004-20240802-en

modiloader discovery trojan

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  9409e6bfaaf19c6f843798b7527ababc_JaffaCakes118
- Size
  
  297KB
- MD5
  
  9409e6bfaaf19c6f843798b7527ababc
- SHA1
  
  16c817a55c44be4770296468a15fad4268a118c3
- SHA256
  
  465db1882d529caea843c95842f5572ed28596ad165178989a48455cad295724
- SHA512
  
  e475f93ca24f7166923d183789178baf1f79e43aa34e2d17ac815e2b9ca6ecb848b1fbda6120cdab7149910d4d17ee7abde73eecbcf81b88eb2e6f423df459c3
- SSDEEP
  
  6144:kF0bfde3syUk+rYruA30orIFRFSoOXhoMfm23T:dbU3WYCA30or4PSl2Ml
Score

10^/10

modiloader discovery trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader Second Stage
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

modiloaderdiscoverytrojan

behavioral2

modiloaderdiscoverytrojan

© 2018-2025

Terms | Privacy