modiloader | ed4bff8ac7ea85203e9d1a72e44a42b8b6c7194b06777cd170c7f190482aa893 | Triage

Submit
Reports

Overview

overview

Static

static

3

d18005e41d...18.exe

windows7-x64

d18005e41d...18.exe

windows10-2004-x64

Sharing

General

Target

d18005e41d7b0691f49b12a85de0c4eb_JaffaCakes118
Size

629KB
Sample

240907-kcx48svann
MD5

d18005e41d7b0691f49b12a85de0c4eb
SHA1

7841bf306b1d30a7d93c4f4ad53b627b2d881cad
SHA256

ed4bff8ac7ea85203e9d1a72e44a42b8b6c7194b06777cd170c7f190482aa893
SHA512

1a577872d9a8a17e854c32ea234ea2116029884634ee5bea23984132d2d7b7b018076a97da1961c5580cedcbbe5f2798156cae9136b212aa3fd9b575b8d9df18
SSDEEP

12288:mr05XmypbFWG2rV+4pRViG47BKe8criDeewYahleFFWQKJ1U4INFdj:A05mypZ5gpWNKeiDuYagFWQKJ+NFdj

Score

10^/10

modiloader discovery trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

d18005e41d7b0691f49b12a85de0c4eb_JaffaCakes118.exe

Resource

win7-20240903-en

modiloader discovery trojan

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

d18005e41d7b0691f49b12a85de0c4eb_JaffaCakes118.exe

Resource

win10v2004-20240802-en

modiloader discovery trojan

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  d18005e41d7b0691f49b12a85de0c4eb_JaffaCakes118
- Size
  
  629KB
- MD5
  
  d18005e41d7b0691f49b12a85de0c4eb
- SHA1
  
  7841bf306b1d30a7d93c4f4ad53b627b2d881cad
- SHA256
  
  ed4bff8ac7ea85203e9d1a72e44a42b8b6c7194b06777cd170c7f190482aa893
- SHA512
  
  1a577872d9a8a17e854c32ea234ea2116029884634ee5bea23984132d2d7b7b018076a97da1961c5580cedcbbe5f2798156cae9136b212aa3fd9b575b8d9df18
- SSDEEP
  
  12288:mr05XmypbFWG2rV+4pRViG47BKe8criDeewYahleFFWQKJ1U4INFdj:A05mypZ5gpWNKeiDuYagFWQKJ+NFdj
Score

10^/10

modiloader discovery trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader Second Stage
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

modiloaderdiscoverytrojan

behavioral2

modiloaderdiscoverytrojan

© 2018-2025

Terms | Privacy