modiloader | 762f0aa74862044a1ef013f1e9d477185f4ba6f8297081721e67f2be009fc731 | Triage

Submit
Reports

Overview

overview

Static

static

3

e63f52acac...18.exe

windows7-x64

e63f52acac...18.exe

windows10-2004-x64

Sharing

General

Target

e63f52acac4c36245779294b271f1d70_JaffaCakes118
Size

598KB
Sample

240917-he6s2szajc
MD5

e63f52acac4c36245779294b271f1d70
SHA1

733a60e6ef4fd46e39d50dd3cee705ea6007078a
SHA256

762f0aa74862044a1ef013f1e9d477185f4ba6f8297081721e67f2be009fc731
SHA512

432fb1bfd9b41f21cc9635258bf1c05df11f2d089b0080b3e0900bf854ba5fe079d69e51e95dda9bd963068bbd735e29989fc594da6fae4f8763b22ade61afc1
SSDEEP

12288:idx81MF5ZE9T5izlNgBBgr3BqTTmCPeRSDoctkHCURjkw3/rMRereXinj7:I8K5y9TWlGgr3BqThWsocOlVxMR1in

Score

10^/10

modiloader discovery trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

e63f52acac4c36245779294b271f1d70_JaffaCakes118.exe

Resource

win7-20240903-en

modiloader discovery trojan

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

e63f52acac4c36245779294b271f1d70_JaffaCakes118.exe

Resource

win10v2004-20240802-en

modiloader discovery trojan

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  e63f52acac4c36245779294b271f1d70_JaffaCakes118
- Size
  
  598KB
- MD5
  
  e63f52acac4c36245779294b271f1d70
- SHA1
  
  733a60e6ef4fd46e39d50dd3cee705ea6007078a
- SHA256
  
  762f0aa74862044a1ef013f1e9d477185f4ba6f8297081721e67f2be009fc731
- SHA512
  
  432fb1bfd9b41f21cc9635258bf1c05df11f2d089b0080b3e0900bf854ba5fe079d69e51e95dda9bd963068bbd735e29989fc594da6fae4f8763b22ade61afc1
- SSDEEP
  
  12288:idx81MF5ZE9T5izlNgBBgr3BqTTmCPeRSDoctkHCURjkw3/rMRereXinj7:I8K5y9TWlGgr3BqThWsocOlVxMR1in
Score

10^/10

modiloader discovery trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader Second Stage
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

modiloaderdiscoverytrojan

behavioral2

modiloaderdiscoverytrojan

© 2018-2025

Terms | Privacy