modiloader | 0a0204eb7304597e435483797036ebd7c8cf9120068639bdfbf0eac9258dcbc0 | Triage

Submit
Reports

Overview

overview

Static

static

3

f51ae51b02...18.exe

windows7-x64

f51ae51b02...18.exe

windows10-2004-x64

3

Sharing

General

Target

f51ae51b02663f53e85971e4cf1de126_JaffaCakes118
Size

190KB
Sample

240925-eb2hdatbnp
MD5

f51ae51b02663f53e85971e4cf1de126
SHA1

ee926edb5ac3320c51565054398fb48ba3400d8a
SHA256

0a0204eb7304597e435483797036ebd7c8cf9120068639bdfbf0eac9258dcbc0
SHA512

da41b17338fbbe2558dc92838cb18cba30baa8e7e2b06b3fa263af5607055824050940de4d599f27b00dc5bb80f4bb29ea76d3675c4b2614cb1a2555bc7581ef
SSDEEP

3072:1asxblq8gTgAGVgYT0xY2dqhAr5KS7Suf3hgqGlma2z8vhRYE4f/qbmJtcGf1j:1NxbMZTgABYL2dqhAt57SuPhrgxRYESf

Score

10^/10

modiloader discovery trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

f51ae51b02663f53e85971e4cf1de126_JaffaCakes118.exe

Resource

win7-20240704-en

modiloader discovery trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

f51ae51b02663f53e85971e4cf1de126_JaffaCakes118.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  f51ae51b02663f53e85971e4cf1de126_JaffaCakes118
- Size
  
  190KB
- MD5
  
  f51ae51b02663f53e85971e4cf1de126
- SHA1
  
  ee926edb5ac3320c51565054398fb48ba3400d8a
- SHA256
  
  0a0204eb7304597e435483797036ebd7c8cf9120068639bdfbf0eac9258dcbc0
- SHA512
  
  da41b17338fbbe2558dc92838cb18cba30baa8e7e2b06b3fa263af5607055824050940de4d599f27b00dc5bb80f4bb29ea76d3675c4b2614cb1a2555bc7581ef
- SSDEEP
  
  3072:1asxblq8gTgAGVgYT0xY2dqhAr5KS7Suf3hgqGlma2z8vhRYE4f/qbmJtcGf1j:1NxbMZTgABYL2dqhAt57SuPhrgxRYESf
Score

10^/10

modiloader discovery trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader Second Stage
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

modiloaderdiscoverytrojan

behavioral2

© 2018-2025

Terms | Privacy