Overview

overview

10

Static

static

1

PDF_asdgjh2236.exe

windows7-x64

10

PDF_asdgjh2236.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_7e4c4dbb10d461c26f4d24da4d988ead8a75f8ad3dad5e9394cddef3ea68bb92

  • Size

    535KB

  • Sample

    241226-wkt84atkey

  • MD5

    857e43664f428c1a677e9599cda3e456

  • SHA1

    5dd29ebd3073998af65aab1ea74ae738a32339ee

  • SHA256

    7e4c4dbb10d461c26f4d24da4d988ead8a75f8ad3dad5e9394cddef3ea68bb92

  • SHA512

    c31b58773a87a42a20aebbf3e917130e12b261aaa4ebe13e8acc722e4aef725f2dc6b8a690cb75fb5a6485e4870c17d1232a3551e6882ded6590cd2d9ec46c9e

  • SSDEEP

    12288:iI76pxArsjEiSGpDG59MqCC8wGBPZf9fyF/5XMiH:apirskb7MtBzPhyzXMiH

Score
10/10
modiloaderdiscoverytrojan

Malware Config

Targets

    • Target

      PDF_asdgjh2236.exe

    • Size

      1.0MB

    • MD5

      6e9c981c1bba3ebbe1e73f2811c25d03

    • SHA1

      8c7eb3c4838a8fc1c743da68d74ab291d269619a

    • SHA256

      78582d172358ebeb7af791aeea731373b6856ab905c5ac122403fd8d0c31b8f3

    • SHA512

      8f3d4a130b45fe86b265d3befd9650aa655efc712b4aa1c20501ceda7f1da7e91bc9b91c3606cfaa3f6637346f03166e7e68f05caa90b5093f5cf2df57116920

    • SSDEEP

      24576:O1BLam+mNN6U2Q/RvlNGnGe+953PszaWpWPgE9d:O1+42Wn3kzLpWPg

    Score
    10/10
    modiloaderdiscoverytrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • Modiloader family

      modiloader

    • ModiLoader First Stage

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks