modiloader | 43dcdf4a15dc68fe37bf06eea87cfcc060c167890d20c0aad627584da5b76301 | Triage

Submit
Reports

Overview

overview

Static

static

e511f48e8a...18.exe

windows7-x64

e511f48e8a...18.exe

windows10-2004-x64

Sharing

General

Target

e511f48e8a6be8dcb7f2a52a9ed911c2_JaffaCakes118
Size

311KB
Sample

240916-szx2ravgrq
MD5

e511f48e8a6be8dcb7f2a52a9ed911c2
SHA1

1759689c4d526adc734da294f38918b1f43ac527
SHA256

43dcdf4a15dc68fe37bf06eea87cfcc060c167890d20c0aad627584da5b76301
SHA512

495b9a4934c34e82a481001790d001daee1b12350c685f626d5283ab8a855eb4fd75ac43b56054f46ea015c4a316c4f09389ca87c3543d7661f80cc01eee0fad
SSDEEP

6144:OGyjnBSkuV1d4eZd88ORJIf/wTBt53CGpcjqoS:tYnBSkuVUeZdYqwT9FoS

Score

10^/10

modiloader discovery evasion trojan upx

Static task

static1

4 signatures

Behavioral task

behavioral1

Sample

e511f48e8a6be8dcb7f2a52a9ed911c2_JaffaCakes118.exe

Resource

win7-20240708-en

modiloader discovery evasion trojan upx

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

e511f48e8a6be8dcb7f2a52a9ed911c2_JaffaCakes118.exe

Resource

win10v2004-20240802-en

modiloader discovery evasion trojan upx

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  e511f48e8a6be8dcb7f2a52a9ed911c2_JaffaCakes118
- Size
  
  311KB
- MD5
  
  e511f48e8a6be8dcb7f2a52a9ed911c2
- SHA1
  
  1759689c4d526adc734da294f38918b1f43ac527
- SHA256
  
  43dcdf4a15dc68fe37bf06eea87cfcc060c167890d20c0aad627584da5b76301
- SHA512
  
  495b9a4934c34e82a481001790d001daee1b12350c685f626d5283ab8a855eb4fd75ac43b56054f46ea015c4a316c4f09389ca87c3543d7661f80cc01eee0fad
- SSDEEP
  
  6144:OGyjnBSkuV1d4eZd88ORJIf/wTBt53CGpcjqoS:tYnBSkuVUeZdYqwT9FoS
Score

10^/10

modiloader discovery evasion trojan upx
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- UAC bypass
  evasion trojan
- ModiLoader Second Stage
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Abuse Elevation Control Mechanism

Bypass User Account Control

Defense Evasion

Abuse Elevation Control Mechanism

Bypass User Account Control

Impair Defenses

Disable or Modify Tools

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

modiloaderdiscoveryevasiontrojanupx

behavioral2

modiloaderdiscoveryevasiontrojanupx

© 2018-2025

Terms | Privacy