modiloader | b1a3c29e2fb81855d6bc540243ccbf215d7baa75b3675d306dd4937825e83267 | Triage

Submit
Reports

Overview

overview

Static

static

3

eb784f224b...18.exe

windows7-x64

eb784f224b...18.exe

windows10-2004-x64

3

Sharing

General

Target

eb784f224b2a3a748c402cd9888c5975_JaffaCakes118
Size

852KB
Sample

240919-q61p4s1gng
MD5

eb784f224b2a3a748c402cd9888c5975
SHA1

a3bbc3b7d0d667832cf85d3124464d811737e9b1
SHA256

b1a3c29e2fb81855d6bc540243ccbf215d7baa75b3675d306dd4937825e83267
SHA512

48fadfcaf6ac62b4ad4913d6b5c41f87037f695bffd6b07feac832ababb2915c26824875708d1ca869103677dea1a030529699598a68629fa025a1d948977557
SSDEEP

12288:wVCvN53f0cwbd4smgNf4ItP2q/J+fjqrxKyOsnDgVTFqCncSgC:lf0/d/xxU+7KywVT7cs

Score

10^/10

modiloader discovery trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

eb784f224b2a3a748c402cd9888c5975_JaffaCakes118.exe

Resource

win7-20240903-en

modiloader discovery trojan

windows7-x64

15 signatures

150 seconds

Behavioral task

behavioral2

Sample

eb784f224b2a3a748c402cd9888c5975_JaffaCakes118.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

150 seconds

Malware Config

Targets

- Target
  
  eb784f224b2a3a748c402cd9888c5975_JaffaCakes118
- Size
  
  852KB
- MD5
  
  eb784f224b2a3a748c402cd9888c5975
- SHA1
  
  a3bbc3b7d0d667832cf85d3124464d811737e9b1
- SHA256
  
  b1a3c29e2fb81855d6bc540243ccbf215d7baa75b3675d306dd4937825e83267
- SHA512
  
  48fadfcaf6ac62b4ad4913d6b5c41f87037f695bffd6b07feac832ababb2915c26824875708d1ca869103677dea1a030529699598a68629fa025a1d948977557
- SSDEEP
  
  12288:wVCvN53f0cwbd4smgNf4ItP2q/J+fjqrxKyOsnDgVTFqCncSgC:lf0/d/xxU+7KywVT7cs
Score

10^/10

modiloader discovery trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader Second Stage
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

modiloaderdiscoverytrojan

behavioral2

© 2018-2025

Terms | Privacy