Overview

overview

10

Static

static

10

a3a915dd3e...0N.dll

windows7-x64

8

a3a915dd3e...0N.dll

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    a3a915dd3eb8471844a300a87ce4394a51f1b885012186fa238bed2a9ec24ed0N

  • Size

    76KB

  • Sample

    241003-yq7gqaxdpb

  • MD5

    e13336bd09fada59a7bc46f35d5733e0

  • SHA1

    9ae580d97c87ec49727c663419c596a0f8ae44ab

  • SHA256

    a3a915dd3eb8471844a300a87ce4394a51f1b885012186fa238bed2a9ec24ed0

  • SHA512

    7fcb9a457b750a7a2a2c718c4748b4f6bdc2ba0b1294cd042f1813f5f6c5866f5402d7ea5ec542b7112dc958926eb56d87c04d34ef6b8ff6502c1c138bdbf463

  • SSDEEP

    1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZDUVvy:c8y93KQjy7G55riF1cMo03u6

Score
10/10
floxifbackdoordiscoverypersistenceprivilege_escalationupx

Malware Config

Targets

    • Target

      a3a915dd3eb8471844a300a87ce4394a51f1b885012186fa238bed2a9ec24ed0N

    • Size

      76KB

    • MD5

      e13336bd09fada59a7bc46f35d5733e0

    • SHA1

      9ae580d97c87ec49727c663419c596a0f8ae44ab

    • SHA256

      a3a915dd3eb8471844a300a87ce4394a51f1b885012186fa238bed2a9ec24ed0

    • SHA512

      7fcb9a457b750a7a2a2c718c4748b4f6bdc2ba0b1294cd042f1813f5f6c5866f5402d7ea5ec542b7112dc958926eb56d87c04d34ef6b8ff6502c1c138bdbf463

    • SSDEEP

      1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZDUVvy:c8y93KQjy7G55riF1cMo03u6

    Score
    8/10
    discoverypersistenceprivilege_escalationupx

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks