modiloader | 0e28de626095d71a93bcf931abf1937793369e8ee3b883d8721710f148e63f96 | Triage

Submit
Reports

Overview

overview

Static

static

3

8dfe31b32f...18.exe

windows7-x64

8dfe31b32f...18.exe

windows10-2004-x64

Sharing

General

Target

8dfe31b32fe7101633f79cca2f1e39d4_JaffaCakes118
Size

501KB
Sample

241103-3avv7sxcpb
MD5

8dfe31b32fe7101633f79cca2f1e39d4
SHA1

8feb727952f773c5e9d27b3884dd617c12846164
SHA256

0e28de626095d71a93bcf931abf1937793369e8ee3b883d8721710f148e63f96
SHA512

d1a7cb27147422dd85c7eb1a897dbbae2b9b355d53381d18b8a65352ba591e03eebbfb7429b9bd2b46edd4fa26bde536acc2c1a5cb0167d5a9eeb44f805af144
SSDEEP

12288:JJBu0QgQ7pO6aPhUJIDhb5QVsF3Z4mxx4Nrv4vEFBpu7SwmCPhb4Nx:JXsgyO6aKcQmX4Nrv4MVu7lmCh4r

Score

10^/10

modiloader discovery trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

8dfe31b32fe7101633f79cca2f1e39d4_JaffaCakes118.exe

Resource

win7-20240729-en

modiloader discovery trojan

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

8dfe31b32fe7101633f79cca2f1e39d4_JaffaCakes118.exe

Resource

win10v2004-20241007-en

modiloader discovery trojan

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  8dfe31b32fe7101633f79cca2f1e39d4_JaffaCakes118
- Size
  
  501KB
- MD5
  
  8dfe31b32fe7101633f79cca2f1e39d4
- SHA1
  
  8feb727952f773c5e9d27b3884dd617c12846164
- SHA256
  
  0e28de626095d71a93bcf931abf1937793369e8ee3b883d8721710f148e63f96
- SHA512
  
  d1a7cb27147422dd85c7eb1a897dbbae2b9b355d53381d18b8a65352ba591e03eebbfb7429b9bd2b46edd4fa26bde536acc2c1a5cb0167d5a9eeb44f805af144
- SSDEEP
  
  12288:JJBu0QgQ7pO6aPhUJIDhb5QVsF3Z4mxx4Nrv4vEFBpu7SwmCPhb4Nx:JXsgyO6aKcQmX4Nrv4MVu7lmCh4r
Score

10^/10

modiloader discovery trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- Modiloader family
  modiloader
- ModiLoader Second Stage
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

modiloaderdiscoverytrojan

behavioral2

modiloaderdiscoverytrojan

© 2018-2024

Terms | Privacy