modiloader | feee7c53de818f81270b9e6538b1fefbe3f8ce1fa5869fcdbbd1c1565354910d | Triage

Submit
Reports

Overview

overview

Static

static

3

dc9a2b435a...18.exe

windows7-x64

dc9a2b435a...18.exe

windows10-2004-x64

Sharing

General

Target

dc9a2b435a4a2c3816d3f8663a40f579_JaffaCakes118
Size

64KB
Sample

240912-tvmkwstcrc
MD5

dc9a2b435a4a2c3816d3f8663a40f579
SHA1

42f7519bc9efe051ad7bf136d0da1bb00abc1b14
SHA256

feee7c53de818f81270b9e6538b1fefbe3f8ce1fa5869fcdbbd1c1565354910d
SHA512

a3bfa949eb0cbf18547e88d4dd7400071f4fba02cf437d10d3c7176d27b05292dc312a6d74ac2b11f6fc7fc2872f3e9d02b3b3322bdd1dffdd8f8c5c3e829e13
SSDEEP

1536:cu2H+IyF1ePtdP3yyre6LZ/5Ia3bV5ot+YfvKIhV47DH:cu4XFdf5LULNv947T

Score

10^/10

modiloader discovery trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

dc9a2b435a4a2c3816d3f8663a40f579_JaffaCakes118.exe

Resource

win7-20240903-en

modiloader discovery trojan

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

dc9a2b435a4a2c3816d3f8663a40f579_JaffaCakes118.exe

Resource

win10v2004-20240802-en

modiloader discovery trojan

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  dc9a2b435a4a2c3816d3f8663a40f579_JaffaCakes118
- Size
  
  64KB
- MD5
  
  dc9a2b435a4a2c3816d3f8663a40f579
- SHA1
  
  42f7519bc9efe051ad7bf136d0da1bb00abc1b14
- SHA256
  
  feee7c53de818f81270b9e6538b1fefbe3f8ce1fa5869fcdbbd1c1565354910d
- SHA512
  
  a3bfa949eb0cbf18547e88d4dd7400071f4fba02cf437d10d3c7176d27b05292dc312a6d74ac2b11f6fc7fc2872f3e9d02b3b3322bdd1dffdd8f8c5c3e829e13
- SSDEEP
  
  1536:cu2H+IyF1ePtdP3yyre6LZ/5Ia3bV5ot+YfvKIhV47DH:cu4XFdf5LULNv947T
Score

10^/10

modiloader discovery trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader Second Stage
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

modiloaderdiscoverytrojan

behavioral2

modiloaderdiscoverytrojan

© 2018-2024

Terms | Privacy