Overview

overview

10

Static

static

3

SKM_BH450i...43.scr

windows10-2004-x64

10

景大 台...sx.scr

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    03042025_0813_02042025_景大 台北港ISF (032525) - invoice# JN-032525C - KAO TO ATLANTA-GA VIA NYC CFS【友鋮】SO.N023.xlsx.rar

  • Size

    2.1MB

  • Sample

    250403-j4ld3ssye1

  • MD5

    3d8130ad36286fe491f10a2e90bbb9db

  • SHA1

    48d5aa35b265476fdef2e432fcb0864ab049d378

  • SHA256

    039412a7bc7448a2cb2bef31c3cb4aa8cb58ae1eb61835082a45741fe8564624

  • SHA512

    4b26cdec19f0a535f0a7eccca1cc28c81c648bcff7eff6719c15f55fbff948511076df6a8c82b3d774e1e3f20379340b0c3f1680960118eb3a8f6b89ad0745ae

  • SSDEEP

    49152:E5R2TGOBTQv54QdZb5R2TGOBTQv54QdZa:q4SO1QvTrV4SO1QvTra

Score
10/10
modiloaderdiscoverypersistencetrojan

Malware Config

Targets

    • Target

      SKM_BH450i241126113808768679897786756452434657687867565645354768789090989786643.scr

    • Size

      1.6MB

    • MD5

      fd369e87839e7d68d18209317decc88e

    • SHA1

      116042c1f6f8e98adcc054cca6817daba5c2ac99

    • SHA256

      0d8d4ae98a1216a5e84c11a34b8c9e9f87f92753cd49029c709bec46cde8845e

    • SHA512

      a44f46bb7e8f7df4e975e96557adc538202d7afb987b6193298a5a2b285962e41b5769013b27b402f55ea7802d04c63f5144218fa95eb155ec86dcb8b9aeb59b

    • SSDEEP

      49152:Gp1cZwfxJMCbRblfBO1h1TqnNa7Ic82rW:GUyRblJwTqnNNd

    Score
    10/10
    modiloaderdiscoverypersistencetrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • Modiloader family

      modiloader

    • ModiLoader Second Stage

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Adds Run key to start application

      persistence
    behavioral1

    • Target

      景大 台北港ISF (032525) - invoice# JN-032525C - KAO TO ATLANTA,GA VIA NYC CFS【友鋮】SO.N023.xlsx.scr

    • Size

      1.6MB

    • MD5

      fd369e87839e7d68d18209317decc88e

    • SHA1

      116042c1f6f8e98adcc054cca6817daba5c2ac99

    • SHA256

      0d8d4ae98a1216a5e84c11a34b8c9e9f87f92753cd49029c709bec46cde8845e

    • SHA512

      a44f46bb7e8f7df4e975e96557adc538202d7afb987b6193298a5a2b285962e41b5769013b27b402f55ea7802d04c63f5144218fa95eb155ec86dcb8b9aeb59b

    • SSDEEP

      49152:Gp1cZwfxJMCbRblfBO1h1TqnNa7Ic82rW:GUyRblJwTqnNNd

    Score
    3/10
    discovery
    behavioral2

MITRE ATT&CK Enterprise v15

Tasks