Overview

overview

9

Static

static

1

2024-03-10...ia.exe

windows7-x64

9

2024-03-10...ia.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-03-10_19a2ca6506a6d547e8a173d62538437c_floxif_mafia

  • Size

    512KB

  • Sample

    240310-x3g7xsae42

  • MD5

    19a2ca6506a6d547e8a173d62538437c

  • SHA1

    1127265cdf6f838a3650c292e06004d57bd48c46

  • SHA256

    814d576b6f42db9b502d44194df05c919c1b2958f8f8312eea90bbf8d0451b43

  • SHA512

    fc82349f3edf2526df4a7110e61e88d7de3b752decf00cc9f54602ad509311d38dd5500b96781e178db386652403428ba877ec6c15a144bd644b21d73526fc86

  • SSDEEP

    12288:HKqMmoNiZiJrAkg+eecZE6CEMzjS5VnDwvFNFSXGhK1VqejEdkGE2azATABjvrEB:HKqMmodg+eLZE6j4jeVS2GhK1VqeIApc

Score
9/10
persistenceupx

Malware Config

Targets

    • Target

      2024-03-10_19a2ca6506a6d547e8a173d62538437c_floxif_mafia

    • Size

      512KB

    • MD5

      19a2ca6506a6d547e8a173d62538437c

    • SHA1

      1127265cdf6f838a3650c292e06004d57bd48c46

    • SHA256

      814d576b6f42db9b502d44194df05c919c1b2958f8f8312eea90bbf8d0451b43

    • SHA512

      fc82349f3edf2526df4a7110e61e88d7de3b752decf00cc9f54602ad509311d38dd5500b96781e178db386652403428ba877ec6c15a144bd644b21d73526fc86

    • SSDEEP

      12288:HKqMmoNiZiJrAkg+eecZE6CEMzjS5VnDwvFNFSXGhK1VqejEdkGE2azATABjvrEB:HKqMmodg+eLZE6j4jeVS2GhK1VqeIApc

    Score
    9/10
    upxpersistence

    • UPX dump on OEP (original entry point)

    • Modifies AppInit DLL entries

      persistence

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks