modiloader | b16d9faac880abde59ab95a2bfd7def78312cc406e26a0492d6f102b6d30d543 | Triage

Submit
Reports

Overview

overview

Static

static

3

a374eb86f8...18.exe

windows7-x64

a374eb86f8...18.exe

windows10-2004-x64

3

Sharing

General

Target

a374eb86f816a5dcd41291a2e4307457_JaffaCakes118
Size

294KB
Sample

241126-w5yf9atkht
MD5

a374eb86f816a5dcd41291a2e4307457
SHA1

bf9c10c88f67ca22b98eaffb1803c82ec21d3ae5
SHA256

b16d9faac880abde59ab95a2bfd7def78312cc406e26a0492d6f102b6d30d543
SHA512

e7ef6b068c7ab7fd53a25fad716010d0b9e621a99874c729a67c92cd22ce40caa8c78ce9195b90f2e78a26b230b5e22402aeabcc746bd949738fa8cc1933b8e0
SSDEEP

6144:R+lJ61o/AyIB/wblBPWxCL5bnETdLcXM0kueOu9:IlL/AyIYPWxU5bETdLr0v49

Score

10^/10

modiloader discovery evasion trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

a374eb86f816a5dcd41291a2e4307457_JaffaCakes118.exe

Resource

win7-20241010-en

modiloader discovery evasion trojan

windows7-x64

15 signatures

150 seconds

Behavioral task

behavioral2

Sample

a374eb86f816a5dcd41291a2e4307457_JaffaCakes118.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  a374eb86f816a5dcd41291a2e4307457_JaffaCakes118
- Size
  
  294KB
- MD5
  
  a374eb86f816a5dcd41291a2e4307457
- SHA1
  
  bf9c10c88f67ca22b98eaffb1803c82ec21d3ae5
- SHA256
  
  b16d9faac880abde59ab95a2bfd7def78312cc406e26a0492d6f102b6d30d543
- SHA512
  
  e7ef6b068c7ab7fd53a25fad716010d0b9e621a99874c729a67c92cd22ce40caa8c78ce9195b90f2e78a26b230b5e22402aeabcc746bd949738fa8cc1933b8e0
- SSDEEP
  
  6144:R+lJ61o/AyIB/wblBPWxCL5bnETdLcXM0kueOu9:IlL/AyIYPWxU5bETdLr0v49
Score

10^/10

modiloader discovery evasion trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- Modiloader family
  modiloader
- UAC bypass
  evasion trojan
- ModiLoader Second Stage
- Executes dropped EXE
- Loads dropped DLL
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Abuse Elevation Control Mechanism

Bypass User Account Control

Defense Evasion

Abuse Elevation Control Mechanism

Bypass User Account Control

Impair Defenses

Disable or Modify Tools

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

modiloaderdiscoveryevasiontrojan

behavioral2

© 2018-2025

Terms | Privacy