phorphiex | 2dc0e02fcc1a56c81903905869a396f328813e63eba46f941ff3379430e12d12 | Triage

Submit
Reports

Overview

overview

Static

static

ca11a2960b...e8.exe

windows7_x64

ca11a2960b...e8.exe

windows10_x64

Resubmissions

03-02-2021 01:29

210203-m1z3hkw9jj 10

21-01-2021 07:07

210121-q1t8nw8wae 10

Sharing

General

Target

ca11a2960b914f9e95a38cfa78aaa6e8.exe
Size

41KB
Sample

210203-m1z3hkw9jj
MD5

ca11a2960b914f9e95a38cfa78aaa6e8
SHA1

ce2d58587cc3d36a3506a9f65bf9aaf41eb520e7
SHA256

2dc0e02fcc1a56c81903905869a396f328813e63eba46f941ff3379430e12d12
SHA512

8eaf1db319fd78518d653cf827881a5c303efb37a90ddd8792f99e1af092cd4666b8ef4d651323eb2fcc32d74921171c15a80f250600fb9e4aa0d77a4cac698a

Score

10^/10

phorphiex evasion loader persistence trojan worm

Static task

static1

Behavioral task

behavioral1

Sample

ca11a2960b914f9e95a38cfa78aaa6e8.exe

Resource

win7v20201028

phorphiex evasion loader persistence trojan worm

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

ca11a2960b914f9e95a38cfa78aaa6e8.exe

Resource

win10v20201028

phorphiex evasion loader persistence trojan worm

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  ca11a2960b914f9e95a38cfa78aaa6e8.exe
- Size
  
  41KB
- MD5
  
  ca11a2960b914f9e95a38cfa78aaa6e8
- SHA1
  
  ce2d58587cc3d36a3506a9f65bf9aaf41eb520e7
- SHA256
  
  2dc0e02fcc1a56c81903905869a396f328813e63eba46f941ff3379430e12d12
- SHA512
  
  8eaf1db319fd78518d653cf827881a5c303efb37a90ddd8792f99e1af092cd4666b8ef4d651323eb2fcc32d74921171c15a80f250600fb9e4aa0d77a4cac698a
Score

10^/10

phorphiex evasion loader persistence trojan worm
- Phorphiex Payload
- Phorphiex Worm
  Malware family which infects systems to distribute other malicious payloads such as ransomware, stealers and cryptominers.
  worm trojan loader phorphiex
- Windows security bypass
  evasion trojan
- Executes dropped EXE
- Loads dropped DLL
- Windows security modification
  evasion trojan
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

phorphiexevasionloaderpersistencetrojanworm

behavioral2

phorphiexevasionloaderpersistencetrojanworm

© 2018-2024

Terms | Privacy