Overview

overview

7

Static

static

1

URLScan

urlscan

https://github.com/E...

windows10-2004-x64

7

Resubmissions

03/08/2024, 08:27

240803-kcfvysxfjl 3

03/08/2024, 08:26

240803-kb15hasdmh 3

02/08/2024, 23:17

240802-292x5avcjr 6

02/08/2024, 23:16

240802-29ahwaygrc 6

02/08/2024, 23:13

240802-27q3vaygma 6

02/08/2024, 23:10

240802-256qhsvbjm 8

02/08/2024, 23:08

240802-24j55avanm 8

02/08/2024, 23:05

240802-2282gayerh 7

02/08/2024, 23:03

240802-21vgpayepe 10

02/08/2024, 22:59

240802-2yey8aydqc 6

Sharing

Copy URL Twitter E-mail

General

  • Target

    https://github.com/Endermanch/MalwareDatabase

  • Sample

    240802-2282gayerh

Score
7/10
discoverypersistenceprivilege_escalationupx

Malware Config

Targets

    • Target

      https://github.com/Endermanch/MalwareDatabase

    Score
    7/10
    discoverypersistenceprivilege_escalationupx

    • Event Triggered Execution: Component Object Model Hijacking

      Adversaries may establish persistence by executing malicious content triggered by hijacked references to Component Object Model (COM) objects.

      persistenceprivilege_escalation

    • Modifies system executable filetype association

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks