modiloader | 5d3fd6168ca896715c22dbb8cb55d6d19e472085eddcbdeb5d5a8eb3005ad475 | Triage

Sharing

General

Target

e24ccfd7376d5e82dc9b73edcfdeb826_JaffaCakes118
Size

22KB
Sample

240915-mt4z8azcqd
MD5

e24ccfd7376d5e82dc9b73edcfdeb826
SHA1

23fd1bf1a940dc267f29790a4f0362ac2dedfe0c
SHA256

5d3fd6168ca896715c22dbb8cb55d6d19e472085eddcbdeb5d5a8eb3005ad475
SHA512

7f9f16430b2b2f2b254b4ca8d9a73b5afeefe7c0ef378901c14757ee5375efb1562b43dd4bdefc795e6d7ba1a46dd71f4dd3c93f922bc15c29163102f56bcb67
SSDEEP

384:zs21vtlLQripOY6P5WWgFG95G4JCo2duWLel6GYLzHUuWEIdUu35aahhzmGxSGp+:btlQripODoWGGHGFyLwz0uWPd/30YzmN

Score

10^/10

modiloader discovery trojan

Malware Config

Targets

- Target
  
  e24ccfd7376d5e82dc9b73edcfdeb826_JaffaCakes118
- Size
  
  22KB
- MD5
  
  e24ccfd7376d5e82dc9b73edcfdeb826
- SHA1
  
  23fd1bf1a940dc267f29790a4f0362ac2dedfe0c
- SHA256
  
  5d3fd6168ca896715c22dbb8cb55d6d19e472085eddcbdeb5d5a8eb3005ad475
- SHA512
  
  7f9f16430b2b2f2b254b4ca8d9a73b5afeefe7c0ef378901c14757ee5375efb1562b43dd4bdefc795e6d7ba1a46dd71f4dd3c93f922bc15c29163102f56bcb67
- SSDEEP
  
  384:zs21vtlLQripOY6P5WWgFG95G4JCo2duWLel6GYLzHUuWEIdUu35aahhzmGxSGp+:btlQripODoWGGHGFyLwz0uWPd/30YzmN
Score

10^/10

discovery modiloader trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader Second Stage
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

modiloaderdiscoverytrojan