modiloader | 8e03581c9beffa0b8914cd5bc89e60fc297589be2564a6796e9c167f788681bb | Triage

Submit
Reports

Overview

overview

Static

static

3

dcc647242e...18.exe

windows7-x64

dcc647242e...18.exe

windows10-2004-x64

Sharing

General

Target

dcc647242e0b567f7a2c27dce3f68c98_JaffaCakes118
Size

746KB
Sample

241210-dvzbpaxjgq
MD5

dcc647242e0b567f7a2c27dce3f68c98
SHA1

02b61b3695be63a7537ee3e34603700b9d556b3b
SHA256

8e03581c9beffa0b8914cd5bc89e60fc297589be2564a6796e9c167f788681bb
SHA512

41d544f34bf6fba843a9a531f0fa9d534491ad6e071f1808af0cbb7c2dcc0d48f2046e359944cf4ed2d836baf38a4d34b3c95e10d25868c0962330a851a5d76f
SSDEEP

12288:NlfE5kKT2UnCrmPBQ7HjOSriwoCur3sJfnXfeCQrTtkYy+TtNhvbvVCC2H:W2UimPe7DGwoL3qfnXf18T6QVt/2H

Score

10^/10

modiloader discovery trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

dcc647242e0b567f7a2c27dce3f68c98_JaffaCakes118.exe

Resource

win7-20240903-en

modiloader discovery trojan

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

dcc647242e0b567f7a2c27dce3f68c98_JaffaCakes118.exe

Resource

win10v2004-20241007-en

modiloader discovery trojan

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  dcc647242e0b567f7a2c27dce3f68c98_JaffaCakes118
- Size
  
  746KB
- MD5
  
  dcc647242e0b567f7a2c27dce3f68c98
- SHA1
  
  02b61b3695be63a7537ee3e34603700b9d556b3b
- SHA256
  
  8e03581c9beffa0b8914cd5bc89e60fc297589be2564a6796e9c167f788681bb
- SHA512
  
  41d544f34bf6fba843a9a531f0fa9d534491ad6e071f1808af0cbb7c2dcc0d48f2046e359944cf4ed2d836baf38a4d34b3c95e10d25868c0962330a851a5d76f
- SSDEEP
  
  12288:NlfE5kKT2UnCrmPBQ7HjOSriwoCur3sJfnXfeCQrTtkYy+TtNhvbvVCC2H:W2UimPe7DGwoL3qfnXf18T6QVt/2H
Score

10^/10

modiloader discovery trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- Modiloader family
  modiloader
- ModiLoader Second Stage
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

modiloaderdiscoverytrojan

behavioral2

modiloaderdiscoverytrojan

© 2018-2025

Terms | Privacy