Overview

overview

9

Static

static

1

2024-05-10...ia.exe

windows7-x64

9

2024-05-10...ia.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-10_83e7221111a2c38a0e41731a3c838c19_floxif_mafia

  • Size

    315KB

  • Sample

    240510-hxr3lsch53

  • MD5

    83e7221111a2c38a0e41731a3c838c19

  • SHA1

    d0d98a66f2a01f40c4e9468cc253f24409865bb2

  • SHA256

    3353d562273d69fa622823127c56ffda1b2b3376a0b70487072149374cddd2f4

  • SHA512

    817a0958ef704a435ed1aa872e059d7fe0ed44aa6d8fce07fa51510a2ebad0501e69329ffded1f52855abc6234e056cbf798f6278937cdc98dd49b4bef153133

  • SSDEEP

    6144:57904ZRJXQSVKEfNmFIUbfql4bhbXBV+UdvrEFp7hK8g:5q4ZfASVKEfMIU7ql4FbXBjvrEH7g

Score
9/10
persistenceupx

Malware Config

Targets

    • Target

      2024-05-10_83e7221111a2c38a0e41731a3c838c19_floxif_mafia

    • Size

      315KB

    • MD5

      83e7221111a2c38a0e41731a3c838c19

    • SHA1

      d0d98a66f2a01f40c4e9468cc253f24409865bb2

    • SHA256

      3353d562273d69fa622823127c56ffda1b2b3376a0b70487072149374cddd2f4

    • SHA512

      817a0958ef704a435ed1aa872e059d7fe0ed44aa6d8fce07fa51510a2ebad0501e69329ffded1f52855abc6234e056cbf798f6278937cdc98dd49b4bef153133

    • SSDEEP

      6144:57904ZRJXQSVKEfNmFIUbfql4bhbXBV+UdvrEFp7hK8g:5q4ZfASVKEfMIU7ql4FbXBjvrEH7g

    Score
    9/10
    persistenceupx

    • UPX dump on OEP (original entry point)

    • Modifies AppInit DLL entries

      persistence

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks