Overview

overview

10

Static

static

10

3baa10fdef...6c.dll

windows7-x64

8

3baa10fdef...6c.dll

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3baa10fdeff795a844c811d34686e50a40e2e6d8f794ab5fdaabcce3101ac26c

  • Size

    76KB

  • Sample

    241210-z85lhsvkhm

  • MD5

    3310eafb5db548469cdc7047b7cd4c3b

  • SHA1

    ca6b8d5e54e985056c9a68c7c06cabcf1df7f750

  • SHA256

    3baa10fdeff795a844c811d34686e50a40e2e6d8f794ab5fdaabcce3101ac26c

  • SHA512

    99865eea9293b961bf770e225a20c82c5a055ed6dbfd68ae40c08c155599734ed5dfba3223e57a1e5fb7c98e31f0a6b0afa15267a7c244a78d49054e0df55249

  • SSDEEP

    1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZTk:c8y93KQjy7G55riF1cMo03C

Score
10/10
floxifbackdoordiscoverypersistenceprivilege_escalationupx

Malware Config

Targets

    • Target

      3baa10fdeff795a844c811d34686e50a40e2e6d8f794ab5fdaabcce3101ac26c

    • Size

      76KB

    • MD5

      3310eafb5db548469cdc7047b7cd4c3b

    • SHA1

      ca6b8d5e54e985056c9a68c7c06cabcf1df7f750

    • SHA256

      3baa10fdeff795a844c811d34686e50a40e2e6d8f794ab5fdaabcce3101ac26c

    • SHA512

      99865eea9293b961bf770e225a20c82c5a055ed6dbfd68ae40c08c155599734ed5dfba3223e57a1e5fb7c98e31f0a6b0afa15267a7c244a78d49054e0df55249

    • SSDEEP

      1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZTk:c8y93KQjy7G55riF1cMo03C

    Score
    8/10
    discoverypersistenceprivilege_escalationupx

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks