General
-
Target
minecraft.exe
-
Size
397KB
-
Sample
241231-2q5jxatkcw
-
MD5
2acb00b326f23809479fa9fa4cf6949a
-
SHA1
85e3272d4e827b4fc4fe0c4c829be27fae3d9d73
-
SHA256
3bc505fb53f8c8c37b366d5b0158e5396f6b0b664fb21973a1c02cde8c17250c
-
SHA512
71b61aa428e96151e2cd17ba2e64194dc0e93ce6a8c1d9ae5e763248961a3b98ccb33cf4b4dcee4cbe95a68a4d9131b1bbbcef87ee3aa93561f3c1a9d84b4817
-
SSDEEP
6144:MLy84u9nSO2GjZkD10BIY3rb1YfBdfpoZ3u/Ht52w6JSeiFPXmd7:Y+u9nx2GjMY3XKfd/H/9PS7
Malware Config
Targets
-
-
Target
minecraft.exe
-
Size
397KB
-
MD5
2acb00b326f23809479fa9fa4cf6949a
-
SHA1
85e3272d4e827b4fc4fe0c4c829be27fae3d9d73
-
SHA256
3bc505fb53f8c8c37b366d5b0158e5396f6b0b664fb21973a1c02cde8c17250c
-
SHA512
71b61aa428e96151e2cd17ba2e64194dc0e93ce6a8c1d9ae5e763248961a3b98ccb33cf4b4dcee4cbe95a68a4d9131b1bbbcef87ee3aa93561f3c1a9d84b4817
-
SSDEEP
6144:MLy84u9nSO2GjZkD10BIY3rb1YfBdfpoZ3u/Ht52w6JSeiFPXmd7:Y+u9nx2GjMY3XKfd/H/9PS7
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
Modiloader family
-
ModiLoader Second Stage
-
Impair Defenses: Safe Mode Boot
-
Adds Run key to start application
-