modiloader | 413be11693ba6eb58843857651f02d19eed8d47381de480898e4bf54ab809d36 | Triage

Submit
Reports

Overview

overview

Static

static

3

f83a0b168d...18.exe

windows7-x64

f83a0b168d...18.exe

windows10-2004-x64

Sharing

General

Target

f83a0b168d32e4d40f59bfc25e0bb63a_JaffaCakes118
Size

481KB
Sample

240926-m4tl8sxakb
MD5

f83a0b168d32e4d40f59bfc25e0bb63a
SHA1

7edd040701b90f04bb53f8d38289c7e3fce6f0a5
SHA256

413be11693ba6eb58843857651f02d19eed8d47381de480898e4bf54ab809d36
SHA512

d6fbfc6b8272b76add40c8bb8183e1308c9880d99a6f5e00aa7dc865e4aff7e7331d3718f55c305aa25b1f3a7672fbc962fabf863e5769b6a2c9f6d1c22bd605
SSDEEP

12288:VX2Snj9WrvJzb9tLimxAbiyvuQ2zGuUKQCtO8bu:l2Snj9iv1b9tLPAba6uQoOeu

Score

10^/10

modiloader discovery trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

f83a0b168d32e4d40f59bfc25e0bb63a_JaffaCakes118.exe

Resource

win7-20240903-en

modiloader discovery trojan

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

f83a0b168d32e4d40f59bfc25e0bb63a_JaffaCakes118.exe

Resource

win10v2004-20240802-en

modiloader discovery trojan

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  f83a0b168d32e4d40f59bfc25e0bb63a_JaffaCakes118
- Size
  
  481KB
- MD5
  
  f83a0b168d32e4d40f59bfc25e0bb63a
- SHA1
  
  7edd040701b90f04bb53f8d38289c7e3fce6f0a5
- SHA256
  
  413be11693ba6eb58843857651f02d19eed8d47381de480898e4bf54ab809d36
- SHA512
  
  d6fbfc6b8272b76add40c8bb8183e1308c9880d99a6f5e00aa7dc865e4aff7e7331d3718f55c305aa25b1f3a7672fbc962fabf863e5769b6a2c9f6d1c22bd605
- SSDEEP
  
  12288:VX2Snj9WrvJzb9tLimxAbiyvuQ2zGuUKQCtO8bu:l2Snj9iv1b9tLPAba6uQoOeu
Score

10^/10

modiloader discovery trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader Second Stage
- Suspicious use of NtSetInformationThreadHideFromDebugger
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

modiloaderdiscoverytrojan

behavioral2

modiloaderdiscoverytrojan

© 2018-2025

Terms | Privacy