modiloader | baa12b649fddd77ef62ecd2b3169fab9bb5fbe78404175485f9a7fb48dc4456d | Triage

Submit
Reports

Overview

overview

Static

static

3

spoolsv.COM.exe

windows7-x64

spoolsv.COM.exe

windows10-2004-x64

Sharing

General

Target

spoolsv.COM.exe
Size

995KB
Sample

241223-gwlzjaxkbm
MD5

dfd15a4158ab979660435d6f3e95a3ec
SHA1

6d5566cddfb4b99e82a6babdbd4536a24e8f6f73
SHA256

baa12b649fddd77ef62ecd2b3169fab9bb5fbe78404175485f9a7fb48dc4456d
SHA512

f33677b419f307c8970c0024e45162bc83e63141878ec2d15b59011261cb30aa412076b62b80fd4e9b99713a689c10699ea8682f67754b2569c83b22b1225e02
SSDEEP

24576:Mt8U4ln77mcFj7LF6iNQj0KyEB1zcwfPM6d:0wnRQj0KyEB1zcwfPMA

Score

10^/10

modiloader discovery trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

spoolsv.COM.exe

Resource

win7-20240903-en

modiloader discovery trojan

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

spoolsv.COM.exe

Resource

win10v2004-20241007-en

modiloader discovery trojan

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  spoolsv.COM.exe
- Size
  
  995KB
- MD5
  
  dfd15a4158ab979660435d6f3e95a3ec
- SHA1
  
  6d5566cddfb4b99e82a6babdbd4536a24e8f6f73
- SHA256
  
  baa12b649fddd77ef62ecd2b3169fab9bb5fbe78404175485f9a7fb48dc4456d
- SHA512
  
  f33677b419f307c8970c0024e45162bc83e63141878ec2d15b59011261cb30aa412076b62b80fd4e9b99713a689c10699ea8682f67754b2569c83b22b1225e02
- SSDEEP
  
  24576:Mt8U4ln77mcFj7LF6iNQj0KyEB1zcwfPM6d:0wnRQj0KyEB1zcwfPMA
Score

10^/10

modiloader discovery trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- Modiloader family
  modiloader
- ModiLoader Second Stage
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

modiloaderdiscoverytrojan

behavioral2

modiloaderdiscoverytrojan

© 2018-2024

Terms | Privacy