modiloader | 22b57815ab4083f4286f34a7351be8630829ceef02fa310ca7b0284b628be57d | Triage

Submit
Reports

Overview

overview

Static

static

3

d7a5483bcf...18.exe

windows7-x64

d7a5483bcf...18.exe

windows10-2004-x64

Sharing

General

Target

d7a5483bcf104a4c5cca96f756b0c3ab_JaffaCakes118
Size

684KB
Sample

240910-f5mfzszepa
MD5

d7a5483bcf104a4c5cca96f756b0c3ab
SHA1

04f93a087a91e84e5b801b30642677ad14f935a0
SHA256

22b57815ab4083f4286f34a7351be8630829ceef02fa310ca7b0284b628be57d
SHA512

511f356e6ae59054817549dba99a2eb483a5e7febce85384c73b7a4cd7f6527c620c6d77e090c1675c1e0b53e04627b416217328d0de25789581a52ef5f897d0
SSDEEP

12288:LIysVDeJAXafT16zf4Dl7pWJTal/leB3F3Z4mxxrH2dAcq:LxsVDeJAXsT16zAJtWEFYB3QmXz2ycq

Score

10^/10

modiloader discovery trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

d7a5483bcf104a4c5cca96f756b0c3ab_JaffaCakes118.exe

Resource

win7-20240903-en

modiloader discovery trojan

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

d7a5483bcf104a4c5cca96f756b0c3ab_JaffaCakes118.exe

Resource

win10v2004-20240802-en

modiloader discovery trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  d7a5483bcf104a4c5cca96f756b0c3ab_JaffaCakes118
- Size
  
  684KB
- MD5
  
  d7a5483bcf104a4c5cca96f756b0c3ab
- SHA1
  
  04f93a087a91e84e5b801b30642677ad14f935a0
- SHA256
  
  22b57815ab4083f4286f34a7351be8630829ceef02fa310ca7b0284b628be57d
- SHA512
  
  511f356e6ae59054817549dba99a2eb483a5e7febce85384c73b7a4cd7f6527c620c6d77e090c1675c1e0b53e04627b416217328d0de25789581a52ef5f897d0
- SSDEEP
  
  12288:LIysVDeJAXafT16zf4Dl7pWJTal/leB3F3Z4mxxrH2dAcq:LxsVDeJAXsT16zAJtWEFYB3QmXz2ycq
Score

10^/10

modiloader discovery trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader Second Stage
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

modiloaderdiscoverytrojan

behavioral2

modiloaderdiscoverytrojan

© 2018-2025

Terms | Privacy