modiloader | cc68ff1ec1b1cec573289564b880089c67e15de6715f5f459f0812070c4f6051 | Triage

Submit
Reports

Overview

overview

Static

static

1

Proforma Invoice.exe

windows7-x64

Proforma Invoice.exe

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_cc68ff1ec1b1cec573289564b880089c67e15de6715f5f459f0812070c4f6051
Size

1.2MB
Sample

241229-aqv7pawqhp
MD5

f7b1300a35c3e74769df8f8885c6771f
SHA1

67a76e2ac4ad8fd2454832f1d474ba6e0e3d9042
SHA256

cc68ff1ec1b1cec573289564b880089c67e15de6715f5f459f0812070c4f6051
SHA512

38ccca086ed7f4edbf05ebd8f18aee62265ea4c0304b6e8a15cd30fc3218ec813dca3fb8a01199a6a9fb8a77e2c49f1bf2d91866418a1646732d17d23a7d41a3
SSDEEP

24576:JYxzvF4EeVKowf2al+ocqJZKa7EWXlBd7FVjfH9XZH:J6xsKowf2asoLJp7EWlBd7FlfHJV

Score

10^/10

modiloader discovery trojan

Static task

static1

Behavioral task

behavioral1

Sample

Proforma Invoice.exe

Resource

win7-20240903-en

modiloader discovery trojan

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

Proforma Invoice.exe

Resource

win10v2004-20241007-en

modiloader discovery trojan

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  Proforma Invoice.exe
- Size
  
  2.1MB
- MD5
  
  ea1d623b1848b3352da3a68e668f2065
- SHA1
  
  e19132b8a2918f3cbea72c3d38134668b88a7f96
- SHA256
  
  ce5571967daed51e87196f18673673ba7fa8d906dc1e54166b62a51f6db61678
- SHA512
  
  ee4d3ae43121b3cd9eaad6f21b0b218ead7fa487fc8a976e4cb79d153753253b55b6313208a42cff5ce054d21872b8817c82024f2777033aaa1bb2843bf80b92
- SSDEEP
  
  49152:b3D7H4a7GMWeWEFKmOZFu5QaZVhlZfyiSCyiSV/CznFw9:b3nYSWeWEFKmOZFkQaZVLpi
Score

10^/10

modiloader discovery trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- Modiloader family
  modiloader
- ModiLoader First Stage
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

modiloaderdiscoverytrojan

behavioral2

modiloaderdiscoverytrojan

© 2018-2024

Terms | Privacy