Overview

overview

10

Static

static

3

d78674a0b1...18.exe

windows7-x64

10

d78674a0b1...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d78674a0b1e4d82307e8ec37a70bdbf2_JaffaCakes118

  • Size

    801KB

  • Sample

    241208-rvl81swmby

  • MD5

    d78674a0b1e4d82307e8ec37a70bdbf2

  • SHA1

    8cb6cb00ac93481527492b374c43bfb070db164b

  • SHA256

    dafa0160ac5f814b90db131d77d29fa16b68d76df3243dafbb0a51a968e725cd

  • SHA512

    228a48242b62eeeb1697a5c55e431745cd61f5cbb4617dac76cac6d54403a71d527891f5f9e5f23ba312d59037ed3a0d660d7d1f3a43407267829880902a54c2

  • SSDEEP

    24576:D+pCK0Adttc//////RTJ5cpbpE5M88FTdI+r7lquHce:q7tdHc//////RTJ5ypE5MRF51r7dce

Score
10/10
modiloaderdiscoverytrojan

Malware Config

Targets

    • Target

      d78674a0b1e4d82307e8ec37a70bdbf2_JaffaCakes118

    • Size

      801KB

    • MD5

      d78674a0b1e4d82307e8ec37a70bdbf2

    • SHA1

      8cb6cb00ac93481527492b374c43bfb070db164b

    • SHA256

      dafa0160ac5f814b90db131d77d29fa16b68d76df3243dafbb0a51a968e725cd

    • SHA512

      228a48242b62eeeb1697a5c55e431745cd61f5cbb4617dac76cac6d54403a71d527891f5f9e5f23ba312d59037ed3a0d660d7d1f3a43407267829880902a54c2

    • SSDEEP

      24576:D+pCK0Adttc//////RTJ5cpbpE5M88FTdI+r7lquHce:q7tdHc//////RTJ5ypE5MRF51r7dce

    Score
    10/10
    modiloaderdiscoverytrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • Modiloader family

      modiloader

    • ModiLoader Second Stage

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks