Overview

overview

10

Static

static

10

4ba930def4...19.dll

windows7-x64

5

4ba930def4...19.dll

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4ba930def47a1d443e2a5dde2741e3f018769d813a695f052a9d6d507201ea19.exe

  • Size

    76KB

  • Sample

    241119-xt41bsvqen

  • MD5

    c5928987f35a1c3fd3453511a54e94f9

  • SHA1

    0ddd9ca995fa5700da838be4fdc94f277ca5eef0

  • SHA256

    4ba930def47a1d443e2a5dde2741e3f018769d813a695f052a9d6d507201ea19

  • SHA512

    9c872e6fecc14d02bd4199edf4fca15f52107766cd29bdeeeb5ee48176e8b9647dbf423b591927e654bb934c14ecc8e7da86f05b1d9cd10740f21eeea9f07994

  • SSDEEP

    1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7Zs+pz3wq:c8y93KQjy7G55riF1cMo03Ki

Score
10/10
floxifbackdoordiscoverypersistenceprivilege_escalationupx

Malware Config

Targets

    • Target

      4ba930def47a1d443e2a5dde2741e3f018769d813a695f052a9d6d507201ea19.exe

    • Size

      76KB

    • MD5

      c5928987f35a1c3fd3453511a54e94f9

    • SHA1

      0ddd9ca995fa5700da838be4fdc94f277ca5eef0

    • SHA256

      4ba930def47a1d443e2a5dde2741e3f018769d813a695f052a9d6d507201ea19

    • SHA512

      9c872e6fecc14d02bd4199edf4fca15f52107766cd29bdeeeb5ee48176e8b9647dbf423b591927e654bb934c14ecc8e7da86f05b1d9cd10740f21eeea9f07994

    • SSDEEP

      1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7Zs+pz3wq:c8y93KQjy7G55riF1cMo03Ki

    Score
    8/10
    discoveryupxpersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks