Overview

overview

10

Static

static

3

d887fc8cfd...18.exe

windows7-x64

10

d887fc8cfd...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d887fc8cfdf54ff1caa776db83058f01_JaffaCakes118

  • Size

    300KB

  • Sample

    240910-tb1y6sshmc

  • MD5

    d887fc8cfdf54ff1caa776db83058f01

  • SHA1

    fe414511e57290f60743bd0cc89afe6b513ed100

  • SHA256

    c45b81fc0d6abfd3c4004244d169c29600635c835d5a941e152944c95d95a6ce

  • SHA512

    afef9c459d52cde35d876d4fe6456e4e9b87b57475d49b6d6a371772a0740000360e09753dc657c40817345eb91cbce27c072fbf29638da4e8d3a5da4db84f02

  • SSDEEP

    6144:40C8saWj8UKXXgHGT8BLEINpbsf5LmW2Ibcis09qW9qtYbBw:nCCWjtKXoGTYhU5L0I4ibG2dw

Score
10/10
modiloaderdiscoverytrojan

Malware Config

Targets

    • Target

      d887fc8cfdf54ff1caa776db83058f01_JaffaCakes118

    • Size

      300KB

    • MD5

      d887fc8cfdf54ff1caa776db83058f01

    • SHA1

      fe414511e57290f60743bd0cc89afe6b513ed100

    • SHA256

      c45b81fc0d6abfd3c4004244d169c29600635c835d5a941e152944c95d95a6ce

    • SHA512

      afef9c459d52cde35d876d4fe6456e4e9b87b57475d49b6d6a371772a0740000360e09753dc657c40817345eb91cbce27c072fbf29638da4e8d3a5da4db84f02

    • SSDEEP

      6144:40C8saWj8UKXXgHGT8BLEINpbsf5LmW2Ibcis09qW9qtYbBw:nCCWjtKXoGTYhU5L0I4ibG2dw

    Score
    10/10
    modiloaderdiscoverytrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • ModiLoader Second Stage

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks