modiloader | d4449a3f8d728c2a1b324035925bfcf706cc5aacc5e16aca2816c9fcd1f16849 | Triage

Submit
Reports

Overview

overview

Static

static

d4449a3f8d...49.exe

windows7-x64

d4449a3f8d...49.exe

windows10-2004-x64

Sharing

General

Target

d4449a3f8d728c2a1b324035925bfcf706cc5aacc5e16aca2816c9fcd1f16849
Size

2.9MB
Sample

240917-n9zwwasaka
MD5

e0bf919ec54d4c3d14e384969cc230b0
SHA1

b38b411cc76948baa0234c1f670dbf876e1d5e51
SHA256

d4449a3f8d728c2a1b324035925bfcf706cc5aacc5e16aca2816c9fcd1f16849
SHA512

4a6eb259f146e4d006b54649c561aae80b5fe30c4b9fe0d0d3e2d00ef6233c948c94c1a10fa38a08d32c3faf9f08175e5e9c8a8dc58d50438b8817ff47ac7fe4
SSDEEP

49152:NDU+fe9YRGjsNwd9isQ6bYYE7ORL4HrOVPisXIa77TO7cBX3FymLrzp6vcP69fhy:Ng+feuvwDiN6bYYE7iLKyJiaIaXuct35

Score

10^/10

modiloader discovery trojan upx

Static task

static1

4 signatures

Behavioral task

behavioral1

Sample

d4449a3f8d728c2a1b324035925bfcf706cc5aacc5e16aca2816c9fcd1f16849.exe

Resource

win7-20240708-en

modiloader discovery trojan upx

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

d4449a3f8d728c2a1b324035925bfcf706cc5aacc5e16aca2816c9fcd1f16849.exe

Resource

win10v2004-20240802-en

modiloader discovery trojan upx

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  d4449a3f8d728c2a1b324035925bfcf706cc5aacc5e16aca2816c9fcd1f16849
- Size
  
  2.9MB
- MD5
  
  e0bf919ec54d4c3d14e384969cc230b0
- SHA1
  
  b38b411cc76948baa0234c1f670dbf876e1d5e51
- SHA256
  
  d4449a3f8d728c2a1b324035925bfcf706cc5aacc5e16aca2816c9fcd1f16849
- SHA512
  
  4a6eb259f146e4d006b54649c561aae80b5fe30c4b9fe0d0d3e2d00ef6233c948c94c1a10fa38a08d32c3faf9f08175e5e9c8a8dc58d50438b8817ff47ac7fe4
- SSDEEP
  
  49152:NDU+fe9YRGjsNwd9isQ6bYYE7ORL4HrOVPisXIa77TO7cBX3FymLrzp6vcP69fhy:Ng+feuvwDiN6bYYE7iLKyJiaIaXuct35
Score

10^/10

modiloader discovery trojan upx
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader First Stage
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

modiloaderdiscoverytrojanupx

behavioral2

modiloaderdiscoverytrojanupx

© 2018-2025

Terms | Privacy