Overview

overview

6

Static

static

1

Flux_FluxC...7).exe

windows10-1703-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Flux_FluxCenter-64-bit_Windows_Installer_(24.05.0.50377).exe

  • Size

    135.8MB

  • Sample

    240522-c8wx2saa6v

  • MD5

    6a8eddce5e781acebfd5c4db14813500

  • SHA1

    69a9eafa683e07099132bd61df65aa66d53df1c1

  • SHA256

    f753603053bce093ac16b0c6fab9a3fae9160987838cf14abd327e6fc3b6877b

  • SHA512

    723b0a3c39d080cff5a4c4ed5a365c8f16d5598d6c3d3e842c5ec0f0934e18105ead65bf2330e62f5185255b3b6e6c19455c4fcfd00665334dfe7b6528548a5b

  • SSDEEP

    3145728:cohniGbSTZzMJjaO3wGzX3VRK0WQysAAFrPptNa9TqtEQqDe0/0XUmL:VnxuZUaUwkX3zK0cmFrP4kaDe0SUy

Score
6/10
discoverypersistence

Malware Config

Targets

    • Target

      Flux_FluxCenter-64-bit_Windows_Installer_(24.05.0.50377).exe

    • Size

      135.8MB

    • MD5

      6a8eddce5e781acebfd5c4db14813500

    • SHA1

      69a9eafa683e07099132bd61df65aa66d53df1c1

    • SHA256

      f753603053bce093ac16b0c6fab9a3fae9160987838cf14abd327e6fc3b6877b

    • SHA512

      723b0a3c39d080cff5a4c4ed5a365c8f16d5598d6c3d3e842c5ec0f0934e18105ead65bf2330e62f5185255b3b6e6c19455c4fcfd00665334dfe7b6528548a5b

    • SSDEEP

      3145728:cohniGbSTZzMJjaO3wGzX3VRK0WQysAAFrPptNa9TqtEQqDe0/0XUmL:VnxuZUaUwkX3zK0cmFrP4kaDe0SUy

    Score
    6/10
    discoverypersistence

    • Adds Run key to start application

      persistence

    • Drops desktop.ini file(s)

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

2
T1547

Registry Run Keys / Startup Folder

2
T1547.001

Event Triggered Execution

1
T1546

Change Default File Association

1
T1546.001

Privilege Escalation

Boot or Logon Autostart Execution

2
T1547

Registry Run Keys / Startup Folder

2
T1547.001

Event Triggered Execution

1
T1546

Change Default File Association

1
T1546.001

Defense Evasion

Modify Registry

4
T1112

Subvert Trust Controls

1
T1553

Install Root Certificate

1
T1553.004

Credential Access

Discovery

Query Registry

6
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

5
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks