Overview

overview

9

Static

static

1

2024-06-15...ia.exe

windows7-x64

9

2024-06-15...ia.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-06-15_783939b72a37e0ac952bcdb714d65903_floxif_mafia

  • Size

    2.7MB

  • Sample

    240615-ppxfpavapj

  • MD5

    783939b72a37e0ac952bcdb714d65903

  • SHA1

    4c9ae8f2f3df3ef950044d85aabfa80a09337bf7

  • SHA256

    35eb1461a04776e934902f7126ac560f76cb285b8ab18fbe2fddb46a9187949c

  • SHA512

    2be9149231db1661182a83ecd1842ddc53c60674a42be5240c3fbe277ab8cd91fa6e86fae2ea064f45b56a5ed210ebfd9b77faba7987f7c49246d4fca0847124

  • SSDEEP

    49152:KIGYB+v+ta6vbBRbJXQv+Tatqc5doCUW5SwFAvhDzaDrhFmAVRcnZPCCGiPxe7W8:K6TTB/AGKqc5doCUW5jFAvBOD1RAZPCL

Score
9/10
persistenceupx

Malware Config

Targets

    • Target

      2024-06-15_783939b72a37e0ac952bcdb714d65903_floxif_mafia

    • Size

      2.7MB

    • MD5

      783939b72a37e0ac952bcdb714d65903

    • SHA1

      4c9ae8f2f3df3ef950044d85aabfa80a09337bf7

    • SHA256

      35eb1461a04776e934902f7126ac560f76cb285b8ab18fbe2fddb46a9187949c

    • SHA512

      2be9149231db1661182a83ecd1842ddc53c60674a42be5240c3fbe277ab8cd91fa6e86fae2ea064f45b56a5ed210ebfd9b77faba7987f7c49246d4fca0847124

    • SSDEEP

      49152:KIGYB+v+ta6vbBRbJXQv+Tatqc5doCUW5SwFAvhDzaDrhFmAVRcnZPCCGiPxe7W8:K6TTB/AGKqc5doCUW5jFAvBOD1RAZPCL

    Score
    9/10
    upxpersistence

    • UPX dump on OEP (original entry point)

    • Modifies AppInit DLL entries

      persistence

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks