Overview

overview

10

Static

static

8

94519fee9d...ab.doc

windows7-x64

10

94519fee9d...ab.doc

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    94519fee9d47fd0262d1dd50e0bf20ea7cb0962b3a1e1de217c5f462b0633fab.doc

  • Size

    143KB

  • Sample

    250115-djfp7sylhv

  • MD5

    c8e60db8174345c243187675d4c760de

  • SHA1

    34bdd0903708f1ab747cbb45a6a292517e1df83e

  • SHA256

    94519fee9d47fd0262d1dd50e0bf20ea7cb0962b3a1e1de217c5f462b0633fab

  • SHA512

    ae643f21123ef8514bf4ac405f0f385534b7d87fa681669d8bc276b81cecfce0e4660843aa442ec52882ca66e8f7cf80c3952bd0fc039ac5dc0d8047b970e769

  • SSDEEP

    1536:L7dgmjjy2lQkySTUb2roegTK+g9WomfaQjSqttJnkL5mS9kBwNR42q8Z:LZPjbTU+J799IjSqtteL5N9kBF2

Score
10/10
modiloaderdiscoverymacromacro_on_actiontrojan

Malware Config

Targets

    • Target

      94519fee9d47fd0262d1dd50e0bf20ea7cb0962b3a1e1de217c5f462b0633fab.doc

    • Size

      143KB

    • MD5

      c8e60db8174345c243187675d4c760de

    • SHA1

      34bdd0903708f1ab747cbb45a6a292517e1df83e

    • SHA256

      94519fee9d47fd0262d1dd50e0bf20ea7cb0962b3a1e1de217c5f462b0633fab

    • SHA512

      ae643f21123ef8514bf4ac405f0f385534b7d87fa681669d8bc276b81cecfce0e4660843aa442ec52882ca66e8f7cf80c3952bd0fc039ac5dc0d8047b970e769

    • SSDEEP

      1536:L7dgmjjy2lQkySTUb2roegTK+g9WomfaQjSqttJnkL5mS9kBwNR42q8Z:LZPjbTU+J799IjSqtteL5N9kBF2

    Score
    10/10
    modiloaderdiscoverytrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • Modiloader family

      modiloader

    • ModiLoader Second Stage

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks