modiloader | 92ac541bc3d2b602a419b9573ad6d9588f4a439585f3a2293ea7810dee4c2035 | Triage

Submit
Reports

Overview

overview

Static

static

3

f45447ed9d...18.exe

windows7-x64

f45447ed9d...18.exe

windows10-2004-x64

Sharing

General

Target

f45447ed9d1a415c0f9c12fea0ede8a5_JaffaCakes118
Size

289KB
Sample

240924-xydzpszgjl
MD5

f45447ed9d1a415c0f9c12fea0ede8a5
SHA1

afea7f558fa0e78559d5678f7cb1d699e4f66bf6
SHA256

92ac541bc3d2b602a419b9573ad6d9588f4a439585f3a2293ea7810dee4c2035
SHA512

f230c84149d4bf8b42d98c79d254f1cbcb4fff5540540d9f134a6bc7dc7d9703b82e3db804cb1c0213ed6564329b4a8e29c4ad0181a633811bbf10f7695b79bc
SSDEEP

6144:x0FolI3Yh63NPgZYhzMs0zPI0+EEjmZmNEGp9er4Loq:uFoe3ZNsYhozbC6xQ9e0Loq

Score

10^/10

modiloader discovery trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

f45447ed9d1a415c0f9c12fea0ede8a5_JaffaCakes118.exe

Resource

win7-20240903-en

modiloader discovery trojan

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

f45447ed9d1a415c0f9c12fea0ede8a5_JaffaCakes118.exe

Resource

win10v2004-20240910-en

modiloader discovery trojan

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  f45447ed9d1a415c0f9c12fea0ede8a5_JaffaCakes118
- Size
  
  289KB
- MD5
  
  f45447ed9d1a415c0f9c12fea0ede8a5
- SHA1
  
  afea7f558fa0e78559d5678f7cb1d699e4f66bf6
- SHA256
  
  92ac541bc3d2b602a419b9573ad6d9588f4a439585f3a2293ea7810dee4c2035
- SHA512
  
  f230c84149d4bf8b42d98c79d254f1cbcb4fff5540540d9f134a6bc7dc7d9703b82e3db804cb1c0213ed6564329b4a8e29c4ad0181a633811bbf10f7695b79bc
- SSDEEP
  
  6144:x0FolI3Yh63NPgZYhzMs0zPI0+EEjmZmNEGp9er4Loq:uFoe3ZNsYhozbC6xQ9e0Loq
Score

10^/10

modiloader discovery trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader Second Stage
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

modiloaderdiscoverytrojan

behavioral2

modiloaderdiscoverytrojan

© 2018-2025

Terms | Privacy