modiloader | f4298f5fa3c16027a9a15e2128f99a2b5c6bb9da9c76095fa1e7f76edbb7779d | Triage

Submit
Reports

Overview

overview

Static

static

3

d1c0b07ee3...18.exe

windows7-x64

d1c0b07ee3...18.exe

windows10-2004-x64

Sharing

General

Target

d1c0b07ee37bd88e8aea22d081613db0_JaffaCakes118
Size

216KB
Sample

240907-mtmqyazern
MD5

d1c0b07ee37bd88e8aea22d081613db0
SHA1

2d95a32246292874ff4afe62c35db368a2ac3901
SHA256

f4298f5fa3c16027a9a15e2128f99a2b5c6bb9da9c76095fa1e7f76edbb7779d
SHA512

380362ef0950a9de7dd7c03328df2287948d71c36fe28eb381128faa0825f748963e206eae1cfb33458ca8f43712afcdee458cec2b65d52e4c48220216f59806
SSDEEP

3072:9T/AkDdb1uzVANkt9UlPv8Td0ggbd55xNPPXD6BhraivprqU07CBLe:9LT1uRAN6Upvu851XKAivpmU0WBq

Score

10^/10

modiloader discovery evasion trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

d1c0b07ee37bd88e8aea22d081613db0_JaffaCakes118.exe

Resource

win7-20240903-en

modiloader discovery evasion trojan

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

d1c0b07ee37bd88e8aea22d081613db0_JaffaCakes118.exe

Resource

win10v2004-20240802-en

modiloader discovery evasion trojan

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  d1c0b07ee37bd88e8aea22d081613db0_JaffaCakes118
- Size
  
  216KB
- MD5
  
  d1c0b07ee37bd88e8aea22d081613db0
- SHA1
  
  2d95a32246292874ff4afe62c35db368a2ac3901
- SHA256
  
  f4298f5fa3c16027a9a15e2128f99a2b5c6bb9da9c76095fa1e7f76edbb7779d
- SHA512
  
  380362ef0950a9de7dd7c03328df2287948d71c36fe28eb381128faa0825f748963e206eae1cfb33458ca8f43712afcdee458cec2b65d52e4c48220216f59806
- SSDEEP
  
  3072:9T/AkDdb1uzVANkt9UlPv8Td0ggbd55xNPPXD6BhraivprqU07CBLe:9LT1uRAN6Upvu851XKAivpmU0WBq
Score

10^/10

modiloader discovery evasion trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- UAC bypass
  evasion trojan
- ModiLoader Second Stage
- Loads dropped DLL
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Abuse Elevation Control Mechanism

Bypass User Account Control

Defense Evasion

Abuse Elevation Control Mechanism

Bypass User Account Control

Impair Defenses

Disable or Modify Tools

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

modiloaderdiscoveryevasiontrojan

behavioral2

modiloaderdiscoveryevasiontrojan

© 2018-2025

Terms | Privacy