hxxp://119[.]88[.]218[.]167[:]33414/i | Triage

Submit
Reports

Overview

overview

8

Static

static

1

URLScan

urlscan

1

http://119.88.218.16...

windows10-2004-x64

8

Sharing

General

Target

http://119.88.218.167:33414/i
Sample

230328-jrj1gshf96

Score

8^/10

persistence upx

Static task

static1

URLScan task

urlscan1

Behavioral task

behavioral1

Sample

http://119.88.218.167:33414/i

Resource

win10v2004-20230221-en

persistence upx

windows10-2004-x64

12 signatures

600 seconds

Malware Config

Targets

- Target
  
  http://119.88.218.167:33414/i
Score

8^/10

persistence upx
- Patched UPX-packed file
  Sample is packed with UPX but required header fields are zeroed out to prevent unpacking with the default UPX tool.
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

urlscan1

behavioral1

© 2018-2024

Terms | Privacy