modiloader | ce4932e4f645f24aa7a86709c093e8d8013cf97969f82880c9d8e5f1b1a04fe2 | Triage

Submit
Reports

Overview

overview

Static

static

aabc076fee...18.exe

windows7-x64

aabc076fee...18.exe

windows10-2004-x64

7

Sharing

General

Target

aabc076fee2a88b3032ee28d5ad25240_JaffaCakes118
Size

72KB
Sample

241128-dhwp2asmdy
MD5

aabc076fee2a88b3032ee28d5ad25240
SHA1

bf26c420e3030707702e44e59950e9284f52fc9f
SHA256

ce4932e4f645f24aa7a86709c093e8d8013cf97969f82880c9d8e5f1b1a04fe2
SHA512

aebecdf8c53de7f3ba68800f2fbfb9e776897699f688efc8e16b0cd6140cb8055ad6e421e4e61c2dfba53703039b870ae5025de1434e35153279b01154e7117b
SSDEEP

768:KI3T3XCyKCG4kotNNGVjYQpvJXN5T/wG3JcoYRjZk37x/dbEYfvyJBn+:Ke3SANNG/X95T/wGZeRjK3t/dQWeB+

Score

10^/10

modiloader discovery

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

aabc076fee2a88b3032ee28d5ad25240_JaffaCakes118.exe

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

aabc076fee2a88b3032ee28d5ad25240_JaffaCakes118.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  aabc076fee2a88b3032ee28d5ad25240_JaffaCakes118
- Size
  
  72KB
- MD5
  
  aabc076fee2a88b3032ee28d5ad25240
- SHA1
  
  bf26c420e3030707702e44e59950e9284f52fc9f
- SHA256
  
  ce4932e4f645f24aa7a86709c093e8d8013cf97969f82880c9d8e5f1b1a04fe2
- SHA512
  
  aebecdf8c53de7f3ba68800f2fbfb9e776897699f688efc8e16b0cd6140cb8055ad6e421e4e61c2dfba53703039b870ae5025de1434e35153279b01154e7117b
- SSDEEP
  
  768:KI3T3XCyKCG4kotNNGVjYQpvJXN5T/wG3JcoYRjZk37x/dbEYfvyJBn+:Ke3SANNG/X95T/wGZeRjK3t/dQWeB+
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy