Overview

overview

10

Static

static

10

bed841037d...4a.dll

windows7-x64

8

bed841037d...4a.dll

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bed841037dd498d751c54f5ca07dd81fc9b17ae9658942a470e21c9ef42ae74a

  • Size

    76KB

  • Sample

    241216-dapazssjel

  • MD5

    954ff422cd915afe4bb13eb45568b8e6

  • SHA1

    760883c34011c817896bbebea3cd31b9084823c5

  • SHA256

    bed841037dd498d751c54f5ca07dd81fc9b17ae9658942a470e21c9ef42ae74a

  • SHA512

    6ccefbdb3642621f7370511ddb3edadf82ddf41e38705e5ce28966bbf286220768ca7f48021806b0c1621b7ba2963478a9cd9f4d53f788c6fba03cc34894adb9

  • SSDEEP

    1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7Z/X6y7O+d8:c8y93KQjy7G55riF1cMo03lXDe

Score
10/10
floxifbackdoordiscoverypersistenceprivilege_escalationupx

Malware Config

Targets

    • Target

      bed841037dd498d751c54f5ca07dd81fc9b17ae9658942a470e21c9ef42ae74a

    • Size

      76KB

    • MD5

      954ff422cd915afe4bb13eb45568b8e6

    • SHA1

      760883c34011c817896bbebea3cd31b9084823c5

    • SHA256

      bed841037dd498d751c54f5ca07dd81fc9b17ae9658942a470e21c9ef42ae74a

    • SHA512

      6ccefbdb3642621f7370511ddb3edadf82ddf41e38705e5ce28966bbf286220768ca7f48021806b0c1621b7ba2963478a9cd9f4d53f788c6fba03cc34894adb9

    • SSDEEP

      1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7Z/X6y7O+d8:c8y93KQjy7G55riF1cMo03lXDe

    Score
    8/10
    discoverypersistenceprivilege_escalationupx

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks