Overview

overview

10

Static

static

10

4c22820298...2e.dll

windows7-x64

8

4c22820298...2e.dll

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4c228202985e2e7aee22ce643638777904b7723fd40b3844946f3344ab16ca2e.exe

  • Size

    76KB

  • Sample

    241120-wcsqaszqfx

  • MD5

    4078577f80d37c1fa94df6b4b6f7ff60

  • SHA1

    d4e90ab73a40305dcb22b4ca630ee0c116bcfdbf

  • SHA256

    4c228202985e2e7aee22ce643638777904b7723fd40b3844946f3344ab16ca2e

  • SHA512

    4e641bd225a3dbba83923e6df7d60defa4fa5f1655c5610e36e488d0f97ab8b3de2b070a5ba7850e11eb37d1660b9b5be840fe3814175795b51464e119b73655

  • SSDEEP

    1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7Zi7ut91:c8y93KQjy7G55riF1cMo03z

Score
10/10
floxifbackdoordiscoverypersistenceprivilege_escalationupx

Malware Config

Targets

    • Target

      4c228202985e2e7aee22ce643638777904b7723fd40b3844946f3344ab16ca2e.exe

    • Size

      76KB

    • MD5

      4078577f80d37c1fa94df6b4b6f7ff60

    • SHA1

      d4e90ab73a40305dcb22b4ca630ee0c116bcfdbf

    • SHA256

      4c228202985e2e7aee22ce643638777904b7723fd40b3844946f3344ab16ca2e

    • SHA512

      4e641bd225a3dbba83923e6df7d60defa4fa5f1655c5610e36e488d0f97ab8b3de2b070a5ba7850e11eb37d1660b9b5be840fe3814175795b51464e119b73655

    • SSDEEP

      1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7Zi7ut91:c8y93KQjy7G55riF1cMo03z

    Score
    8/10
    discoverypersistenceprivilege_escalationupx

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks