modiloader | 7017a411c2c7d00eb38629d95d2ad85aad2624135eb74cf972215b445c27e761 | Triage

Submit
Reports

Overview

overview

Static

static

3

f8f51dd41d...18.exe

windows7-x64

f8f51dd41d...18.exe

windows10-2004-x64

Sharing

General

Target

f8f51dd41d1936e84dac80cf0ae246af_JaffaCakes118
Size

577KB
Sample

240926-wyhgfs1bqm
MD5

f8f51dd41d1936e84dac80cf0ae246af
SHA1

af9775f43db71fc1da42303ae23fd68bc9f45156
SHA256

7017a411c2c7d00eb38629d95d2ad85aad2624135eb74cf972215b445c27e761
SHA512

8817080402ed1db58086de089c0c3d449d5af6c723ecd870c2c5ce5137e52522354b113fbc03d7bfa7c51ef87785cf27013acc3a96ece4bb8d18cde9d373cbd7
SSDEEP

12288:RH5GQVg+NhGOJpfu8zS9vjfcRkFCstF3Z4mxxpuxm1EZi9XxF9E2AGD:RH5tzJpmf9bfcNstQmXAw1wi9D9E2Ao

Score

10^/10

modiloader discovery trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

f8f51dd41d1936e84dac80cf0ae246af_JaffaCakes118.exe

Resource

win7-20240708-en

modiloader discovery trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

f8f51dd41d1936e84dac80cf0ae246af_JaffaCakes118.exe

Resource

win10v2004-20240802-en

modiloader discovery trojan

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  f8f51dd41d1936e84dac80cf0ae246af_JaffaCakes118
- Size
  
  577KB
- MD5
  
  f8f51dd41d1936e84dac80cf0ae246af
- SHA1
  
  af9775f43db71fc1da42303ae23fd68bc9f45156
- SHA256
  
  7017a411c2c7d00eb38629d95d2ad85aad2624135eb74cf972215b445c27e761
- SHA512
  
  8817080402ed1db58086de089c0c3d449d5af6c723ecd870c2c5ce5137e52522354b113fbc03d7bfa7c51ef87785cf27013acc3a96ece4bb8d18cde9d373cbd7
- SSDEEP
  
  12288:RH5GQVg+NhGOJpfu8zS9vjfcRkFCstF3Z4mxxpuxm1EZi9XxF9E2AGD:RH5tzJpmf9bfcNstQmXAw1wi9D9E2Ao
Score

10^/10

modiloader discovery trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader Second Stage
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

modiloaderdiscoverytrojan

behavioral2

modiloaderdiscoverytrojan

© 2018-2025

Terms | Privacy