modiloader | 92e4d0425add471bb8ef19a26ffcd2bf65afa6819f05f8473eb3f8d46a4bdc0f | Triage

Submit
Reports

Overview

overview

Static

static

Bank Detai...d..exe

windows7-x64

Bank Detai...d..exe

windows10-2004-x64

Sharing

General

Target

ae887d49b6ef4bab22df1aef6a82d37f_JaffaCakes118
Size

401KB
Sample

240820-kglxrsscrb
MD5

ae887d49b6ef4bab22df1aef6a82d37f
SHA1

1c46dc0506cff513e43d2b3ee00eb9afcfadb7ee
SHA256

92e4d0425add471bb8ef19a26ffcd2bf65afa6819f05f8473eb3f8d46a4bdc0f
SHA512

cb4bb72fd4a8dfecd06bc67aeb31f1b7aef95b99730f41780d7fb4c4704f9a05e1087041a625f7358697f045daf7ecc111d99fd668c455130ee2b67736ec217f
SSDEEP

6144:mFMWOX2oDq4wlD2fbAJ8uAHMzvbMDvHaQHrx8jSYaq5MYljQ4d/U6zDmWzfzzu:tWOTDq4DAJP+xv6QLkSY3+M/B3tzfW

Score

10^/10

modiloader discovery trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

Bank Details Changed..exe

Resource

win7-20240705-en

modiloader discovery trojan

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

Bank Details Changed..exe

Resource

win10v2004-20240802-en

modiloader discovery trojan

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Extracted

Family

modiloader

C2

https://drive.google.com/u/0/uc?id=1-uob4bD7HwuWQ23eLDd4Tp7qik_wVSHt&export=download

Targets

- Target
  
  Bank Details Changed..exe
- Size
  
  1.2MB
- MD5
  
  6b2475dca41dcefb5c1e09e5976ddad0
- SHA1
  
  23270c9d5ba2905df6c72a4d476a71d2d2868ef3
- SHA256
  
  94e4f0b4cbafbf6739f873f126465745f59df8251bf79adf3cbd03a04c65e9c4
- SHA512
  
  f634dec40f9c5a3042710eed9abdf690aaa86dd052a03e7136f54f93349cd7e5c4e6652c867e96005606a897632ec604084158319373c6fbee80f7ac35e41c9d
- SSDEEP
  
  24576:fBlDgE7EmXWAqSvg439vGSVNe1/hqIiHh/d7:f7DlC+GSjiBiB1
Score

10^/10

modiloader discovery trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader First Stage
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

modiloaderdiscoverytrojan

behavioral2

modiloaderdiscoverytrojan

© 2018-2025

Terms | Privacy