Overview

overview

10

Static

static

10

43ee645f75...0N.dll

windows7-x64

7

43ee645f75...0N.dll

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    43ee645f7548182ad6dca8ec94f82960N.exe

  • Size

    76KB

  • Sample

    240823-dxwctasgpd

  • MD5

    43ee645f7548182ad6dca8ec94f82960

  • SHA1

    97cd3177a3b97c638ff85a1f1acc0591f0ed1627

  • SHA256

    3ed503e21c69493380b935214f539214342718d2eaa6f8636c325efe7150f40a

  • SHA512

    de380d4f26af917e687d0257da698ce3590427a0d975b0da28854f1d2e5a0ca1c398172a21aea7bbfedc2c66c82973cc27e08f1424ee2f9ddf3e851e94d8473e

  • SSDEEP

    1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZMfe0zslG:c8y93KQjy7G55riF1cMo03/0zslG

Score
10/10
floxifbackdoordiscoverypersistenceprivilege_escalationupx

Malware Config

Targets

    • Target

      43ee645f7548182ad6dca8ec94f82960N.exe

    • Size

      76KB

    • MD5

      43ee645f7548182ad6dca8ec94f82960

    • SHA1

      97cd3177a3b97c638ff85a1f1acc0591f0ed1627

    • SHA256

      3ed503e21c69493380b935214f539214342718d2eaa6f8636c325efe7150f40a

    • SHA512

      de380d4f26af917e687d0257da698ce3590427a0d975b0da28854f1d2e5a0ca1c398172a21aea7bbfedc2c66c82973cc27e08f1424ee2f9ddf3e851e94d8473e

    • SSDEEP

      1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZMfe0zslG:c8y93KQjy7G55riF1cMo03/0zslG

    Score
    8/10
    discoveryupxpersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks