modiloader | d3744422119abebfe19f00fde4f1d6ca771ca5b93b93ebbbf5d35a89f514a73a | Triage

Submit
Reports

Overview

overview

Static

static

1

OC CVE6535...df.exe

windows7-x64

OC CVE6535...df.exe

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_d3744422119abebfe19f00fde4f1d6ca771ca5b93b93ebbbf5d35a89f514a73a
Size

429KB
Sample

241229-bl2pcaxpbv
MD5

e148c32ec375d2a05482bf70c8835f80
SHA1

5f45ea699396be1d67c4ed4edb4c8d01db860399
SHA256

d3744422119abebfe19f00fde4f1d6ca771ca5b93b93ebbbf5d35a89f514a73a
SHA512

5fec138e01e04ec6d1a304c7b80c142ac314de8646db82e191b93bb4ae1f5364a5d9bf8915dfab380cff277b4bf76bbe9c15186c8a0d6d37738de5a9c9b89f5d
SSDEEP

12288:+p3ACld8ozg1tZdYjMol8g4Ae2X509PLcj8SBJQWej:AQT4utcjXegFJ50K7Bg

Score

10^/10

modiloader discovery trojan

Static task

static1

Behavioral task

behavioral1

Sample

OC CVE6535 _TVOP-MIO 10(C) 2020,pdf.exe

Resource

win7-20241010-en

modiloader discovery trojan

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

OC CVE6535 _TVOP-MIO 10(C) 2020,pdf.exe

Resource

win10v2004-20241007-en

modiloader discovery trojan

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  OC CVE6535 _TVOP-MIO 10(C) 2020,pdf.exe
- Size
  
  1.0MB
- MD5
  
  30fd4a13202b81061093494a8c68ea9b
- SHA1
  
  ce9b8b6922c0ae31841a24ca3ef611d3c0e8a171
- SHA256
  
  e7def582e6c764fb35cad598da8b83da969897d37241402df8c8bac2b870432f
- SHA512
  
  8f21190609bf4a04f84bdc453345f6922eb9afa84a8535a6b676aaf29e10b23d0152c83399e5f7dfb2fb031439e8e87919aa68c30b4e977649b5e7a1ef34ce3d
- SSDEEP
  
  24576:O1BLam+mNN6U2Q/RvlNGnGe+95mPszaWpWPgE9d:O1+42WnmkzLpWPg
Score

10^/10

modiloader discovery trojan
- ModiLoader, DBatLoader
  ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
  trojan modiloader
- Modiloader family
  modiloader
- ModiLoader First Stage
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

modiloaderdiscoverytrojan

behavioral2

modiloaderdiscoverytrojan

© 2018-2024

Terms | Privacy