Overview

overview

10

Static

static

10

be4d621815...aN.dll

windows7-x64

8

be4d621815...aN.dll

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    be4d6218154966b53afffccc92542cb19a12cdbba991366e9a6da46230176cdaN.exe

  • Size

    76KB

  • Sample

    241216-jdf2nszrds

  • MD5

    17f086e68c870443476c1ae6ded30120

  • SHA1

    93fd92583bc12060cd06ffd51959c3862e61dbb7

  • SHA256

    be4d6218154966b53afffccc92542cb19a12cdbba991366e9a6da46230176cda

  • SHA512

    a368485809aaa98e18a5869c90b470cb1faabc39bb30aaa2be02c78ab635a2db6571fc76fbf67f03910f0f4b80c67391f40be3f1358a27a5f7625fb6e30df227

  • SSDEEP

    1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7Zgu11h:c8y93KQjy7G55riF1cMo033

Score
10/10
floxifbackdoordiscoverypersistenceprivilege_escalationupx

Malware Config

Targets

    • Target

      be4d6218154966b53afffccc92542cb19a12cdbba991366e9a6da46230176cdaN.exe

    • Size

      76KB

    • MD5

      17f086e68c870443476c1ae6ded30120

    • SHA1

      93fd92583bc12060cd06ffd51959c3862e61dbb7

    • SHA256

      be4d6218154966b53afffccc92542cb19a12cdbba991366e9a6da46230176cda

    • SHA512

      a368485809aaa98e18a5869c90b470cb1faabc39bb30aaa2be02c78ab635a2db6571fc76fbf67f03910f0f4b80c67391f40be3f1358a27a5f7625fb6e30df227

    • SSDEEP

      1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7Zgu11h:c8y93KQjy7G55riF1cMo033

    Score
    8/10
    discoverypersistenceprivilege_escalationupx

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks