modiloader | 32d8057b95350f30fd4acdee5d500efacf2c519046953243a3d90afb832ba7cd | Triage

Submit
Reports

Overview

overview

Static

static

fd3da4861b...18.exe

windows7-x64

fd3da4861b...18.exe

windows10-2004-x64

Sharing

General

Target

fd3da4861b986b2fdbd61af2b2ee8b4a_JaffaCakes118
Size

11.8MB
Sample

240928-13q2lsybqn
MD5

fd3da4861b986b2fdbd61af2b2ee8b4a
SHA1

a9c3db8f5806ff4afaeb4554d7cc219aa8850beb
SHA256

32d8057b95350f30fd4acdee5d500efacf2c519046953243a3d90afb832ba7cd
SHA512

ebd3065910b40216760302c09ec9605125681253fe51d26d6b5fe2cbd1c11656eb395c77440d107a53c4d73762c61f3c97b91fe820f23e73c6eff971620660f5
SSDEEP

98304:Xd/M3eCRhMluo76Ue3dd2wxVacRE15dtCayuDHo8J4K:XyuFlqU+dd2wxVs15DCMDHo8Jd

Score

10^/10

modiloader discovery trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

fd3da4861b986b2fdbd61af2b2ee8b4a_JaffaCakes118.exe

Resource

win7-20240708-en

modiloader discovery trojan

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

fd3da4861b986b2fdbd61af2b2ee8b4a_JaffaCakes118.exe

Resource

win10v2004-20240802-en

modiloader discovery trojan

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  fd3da4861b986b2fdbd61af2b2ee8b4a_JaffaCakes118
- Size
  
  11.8MB
- MD5
  
  fd3da4861b986b2fdbd61af2b2ee8b4a
- SHA1
  
  a9c3db8f5806ff4afaeb4554d7cc219aa8850beb
- SHA256
  
  32d8057b95350f30fd4acdee5d500efacf2c519046953243a3d90afb832ba7cd
- SHA512
  
  ebd3065910b40216760302c09ec9605125681253fe51d26d6b5fe2cbd1c11656eb395c77440d107a53c4d73762c61f3c97b91fe820f23e73c6eff971620660f5
- SSDEEP
  
  98304:Xd/M3eCRhMluo76Ue3dd2wxVacRE15dtCayuDHo8J4K:XyuFlqU+dd2wxVs15DCMDHo8Jd
Score

10^/10

modiloader discovery trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- ModiLoader First Stage
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

modiloaderdiscoverytrojan

behavioral2

modiloaderdiscoverytrojan

© 2018-2025

Terms | Privacy