modiloader | aa6703271ba6164a0b1924968b3a09015165e1dad5c44980ad9fd65b507e8d8c | Triage

Submit
Reports

Overview

overview

Static

static

1

e2eef3154a...18.exe

windows7-x64

e2eef3154a...18.exe

windows10-2004-x64

Sharing

General

Target

e2eef3154ac480626174c41dc166a2db_JaffaCakes118
Size

1.5MB
Sample

241211-yenkgazrbm
MD5

e2eef3154ac480626174c41dc166a2db
SHA1

bed638a383758fb823c8b8942e7b4b16969fc2d5
SHA256

aa6703271ba6164a0b1924968b3a09015165e1dad5c44980ad9fd65b507e8d8c
SHA512

977c742809d5a5515307f76b3963d6a0db0a8adc8544ac449dd1027100ba1a233dabd8e8884d86dc515843f511bb712074d517c86497f227d13ff234e2075bf2
SSDEEP

12288:TYujabNuQcJFAs72RV8P2GR5fjfT5yZ6xpT6pfTcV39FFFfW:TY283kxR5DT586xF6fTcV39FFFfW

Score

10^/10

modiloader discovery trojan

Static task

static1

Behavioral task

behavioral1

Sample

e2eef3154ac480626174c41dc166a2db_JaffaCakes118.exe

Resource

win7-20240903-en

modiloader discovery trojan

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

e2eef3154ac480626174c41dc166a2db_JaffaCakes118.exe

Resource

win10v2004-20241007-en

modiloader discovery trojan

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  e2eef3154ac480626174c41dc166a2db_JaffaCakes118
- Size
  
  1.5MB
- MD5
  
  e2eef3154ac480626174c41dc166a2db
- SHA1
  
  bed638a383758fb823c8b8942e7b4b16969fc2d5
- SHA256
  
  aa6703271ba6164a0b1924968b3a09015165e1dad5c44980ad9fd65b507e8d8c
- SHA512
  
  977c742809d5a5515307f76b3963d6a0db0a8adc8544ac449dd1027100ba1a233dabd8e8884d86dc515843f511bb712074d517c86497f227d13ff234e2075bf2
- SSDEEP
  
  12288:TYujabNuQcJFAs72RV8P2GR5fjfT5yZ6xpT6pfTcV39FFFfW:TY283kxR5DT586xF6fTcV39FFFfW
Score

10^/10

modiloader discovery trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- Modiloader family
  modiloader
- ModiLoader Second Stage
- Suspicious use of NtSetInformationThreadHideFromDebugger
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

modiloaderdiscoverytrojan

behavioral2

modiloaderdiscoverytrojan

© 2018-2025

Terms | Privacy