General

  • Target

    Svcrhpjadgyclc.cmd

  • Size

    2.8MB

  • Sample

    241219-nwfwvasqhx

  • MD5

    7afcba92a35ba26fcde12f3aba8ff7d8

  • SHA1

    8fe8577fc2ef8866c83ab163a8655ea777e6d4f4

  • SHA256

    29bda570966cf934b38ff7b1613f9330709307405391ced5452bd9cc63736331

  • SHA512

    a0fdbdb93054ea71efea0dc9ecee2d68644d89e0725a3c34e0d492fd6b2b3d9f3307fbfa5386cdec1e7f452754331bf73242e9316d3d667353cc7c62bad58027

  • SSDEEP

    24576:kH1yveXvtJNwYay5+kiD7Dm5c0B58llll8lUWtWJxM9bh+NfbTXr063u95fX7:kVyGftJ+YawbiS5BBUvzM9bh+NfnXm

Malware Config

Targets

    • Target

      Svcrhpjadgyclc.cmd

    • Size

      2.8MB

    • MD5

      7afcba92a35ba26fcde12f3aba8ff7d8

    • SHA1

      8fe8577fc2ef8866c83ab163a8655ea777e6d4f4

    • SHA256

      29bda570966cf934b38ff7b1613f9330709307405391ced5452bd9cc63736331

    • SHA512

      a0fdbdb93054ea71efea0dc9ecee2d68644d89e0725a3c34e0d492fd6b2b3d9f3307fbfa5386cdec1e7f452754331bf73242e9316d3d667353cc7c62bad58027

    • SSDEEP

      24576:kH1yveXvtJNwYay5+kiD7Dm5c0B58llll8lUWtWJxM9bh+NfbTXr063u95fX7:kVyGftJ+YawbiS5BBUvzM9bh+NfnXm

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

    • Modiloader family

    • ModiLoader Second Stage

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks