modiloader | c56e5555cd7fb723c4fea7878fc15134adc0f2b57dc2cef80317d9eedad38f27 | Triage

Submit
Reports

Overview

overview

Static

static

3

ea1ca36dc6...18.exe

windows7-x64

ea1ca36dc6...18.exe

windows10-2004-x64

Sharing

General

Target

ea1ca36dc6059533ed49def396d86311_JaffaCakes118
Size

291KB
Sample

240918-2p7b4sxbnb
MD5

ea1ca36dc6059533ed49def396d86311
SHA1

6dd6a2f7ace1ead7b0bb4ecc695f97ec8b621e4b
SHA256

c56e5555cd7fb723c4fea7878fc15134adc0f2b57dc2cef80317d9eedad38f27
SHA512

be716243fc937afd42935e677a904a659f250ffc602f9e7d6d15bc275328ff8e8afda9d568c974c4cad04bdd24bf68220d01186fdaab95311fe894736dcd1b4c
SSDEEP

6144:Wp0sbQ+xJ5vYXj1zULIPtIibYl2YLtDW76HHo9Uhh8veCzxMJGbC45:Tsbz5ej9ULIPtIibYdD06nWUhmVzx

Score

10^/10

modiloader discovery trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ea1ca36dc6059533ed49def396d86311_JaffaCakes118.exe

Resource

win7-20240903-en

modiloader discovery trojan

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

ea1ca36dc6059533ed49def396d86311_JaffaCakes118.exe

Resource

win10v2004-20240802-en

modiloader discovery trojan

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  ea1ca36dc6059533ed49def396d86311_JaffaCakes118
- Size
  
  291KB
- MD5
  
  ea1ca36dc6059533ed49def396d86311
- SHA1
  
  6dd6a2f7ace1ead7b0bb4ecc695f97ec8b621e4b
- SHA256
  
  c56e5555cd7fb723c4fea7878fc15134adc0f2b57dc2cef80317d9eedad38f27
- SHA512
  
  be716243fc937afd42935e677a904a659f250ffc602f9e7d6d15bc275328ff8e8afda9d568c974c4cad04bdd24bf68220d01186fdaab95311fe894736dcd1b4c
- SSDEEP
  
  6144:Wp0sbQ+xJ5vYXj1zULIPtIibYl2YLtDW76HHo9Uhh8veCzxMJGbC45:Tsbz5ej9ULIPtIibYdD06nWUhmVzx
Score

10^/10

modiloader discovery trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader Second Stage
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

modiloaderdiscoverytrojan

behavioral2

modiloaderdiscoverytrojan

© 2018-2025

Terms | Privacy