modiloader | dbfa6e510361d3dc1b36fe5c90c8c6702e436f7b5a02a5226522744ee5c608e2 | Triage

Submit
Reports

Overview

overview

Static

static

ee2eacf17a...18.exe

windows7-x64

ee2eacf17a...18.exe

windows10-2004-x64

Sharing

General

Target

ee2eacf17a03aef062a4e12cf80da4c6_JaffaCakes118
Size

1.7MB
Sample

240920-w3nt2a1crp
MD5

ee2eacf17a03aef062a4e12cf80da4c6
SHA1

97d9c562251e0867dc81f33677278e788e80c719
SHA256

dbfa6e510361d3dc1b36fe5c90c8c6702e436f7b5a02a5226522744ee5c608e2
SHA512

6c43cfea2e363d57f8806708f2cd2682b53132efb63b0d499d756601e251ce8358f6c91dfbc5b5ce664d60f72e6670393fc12df9b62a8b8a0cd48f3f65032a7b
SSDEEP

49152:Z8ifEuFEhhjd27l7BB6pzE3AoktsMaIGswY0k7/yS2RDsSg/6Eo0r0IOllMq:n0jd27l7BB6m3AoktDaIG66S2RDJg/6V

Score

10^/10

modiloader discovery trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

ee2eacf17a03aef062a4e12cf80da4c6_JaffaCakes118.exe

Resource

win7-20240903-en

modiloader discovery trojan

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

ee2eacf17a03aef062a4e12cf80da4c6_JaffaCakes118.exe

Resource

win10v2004-20240802-en

modiloader discovery trojan

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  ee2eacf17a03aef062a4e12cf80da4c6_JaffaCakes118
- Size
  
  1.7MB
- MD5
  
  ee2eacf17a03aef062a4e12cf80da4c6
- SHA1
  
  97d9c562251e0867dc81f33677278e788e80c719
- SHA256
  
  dbfa6e510361d3dc1b36fe5c90c8c6702e436f7b5a02a5226522744ee5c608e2
- SHA512
  
  6c43cfea2e363d57f8806708f2cd2682b53132efb63b0d499d756601e251ce8358f6c91dfbc5b5ce664d60f72e6670393fc12df9b62a8b8a0cd48f3f65032a7b
- SSDEEP
  
  49152:Z8ifEuFEhhjd27l7BB6pzE3AoktsMaIGswY0k7/yS2RDsSg/6Eo0r0IOllMq:n0jd27l7BB6m3AoktDaIG66S2RDJg/6V
Score

10^/10

modiloader discovery trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader Second Stage
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

modiloaderdiscoverytrojan

behavioral2

modiloaderdiscoverytrojan

© 2018-2025

Terms | Privacy