General
-
Target
Swift payment confirmation.exe
-
Size
1009KB
-
Sample
241031-jzd47swkdm
-
MD5
92fdcc36be7b26d49f67f2f02fefbf07
-
SHA1
f84b37ff359f55cdfc1c60a640cc7081b523e5ce
-
SHA256
61cf08eac40229e089f7630d5412aa0a8282c01d6348763d92d68e2fcb92e24e
-
SHA512
51e32e91a5fa9545abfb822d36d9f5e6613b0a1f6919ffd84748cfd388333ebbb1760b52704fd2c44dd77fab81826e19b25efd260cdf4695b3890f1c8bcc7afb
-
SSDEEP
24576:HccTfHWId4iO+0SvkMVIDT8Jf3pbV13Jks:H3VHVI8t5X
Static task
static1
Behavioral task
behavioral1
Sample
Swift payment confirmation.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
Swift payment confirmation.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
Swift payment confirmation.exe
-
Size
1009KB
-
MD5
92fdcc36be7b26d49f67f2f02fefbf07
-
SHA1
f84b37ff359f55cdfc1c60a640cc7081b523e5ce
-
SHA256
61cf08eac40229e089f7630d5412aa0a8282c01d6348763d92d68e2fcb92e24e
-
SHA512
51e32e91a5fa9545abfb822d36d9f5e6613b0a1f6919ffd84748cfd388333ebbb1760b52704fd2c44dd77fab81826e19b25efd260cdf4695b3890f1c8bcc7afb
-
SSDEEP
24576:HccTfHWId4iO+0SvkMVIDT8Jf3pbV13Jks:H3VHVI8t5X
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
Modiloader family
-
ModiLoader Second Stage
-
Legitimate hosting services abused for malware hosting/C2
-