Overview

overview

10

Static

static

10

235bb93e1d...1N.dll

windows7-x64

5

235bb93e1d...1N.dll

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    235bb93e1da0caf00137778a01d5498b36c387405ba048d743149ebb53fe3491N.exe

  • Size

    76KB

  • Sample

    241225-2a7pbszmfz

  • MD5

    a1b4c653d1b19a4dd0d57163359f7220

  • SHA1

    d6d0df75889918f4aa3b7791a88e4baea52f5d1d

  • SHA256

    235bb93e1da0caf00137778a01d5498b36c387405ba048d743149ebb53fe3491

  • SHA512

    92e828cda97642e8fce7d5ad13bc8edefc32da2464da8cc56b2c171df0f1ba12f56b5763824c2ff7c5bed8aa2686053ee78cb0ca86412967aa80d5080f887487

  • SSDEEP

    1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZZu8I24P:c8y93KQjy7G55riF1cMo03zu8CP

Score
10/10
floxifbackdoordiscoverypersistenceprivilege_escalationupx

Malware Config

Targets

    • Target

      235bb93e1da0caf00137778a01d5498b36c387405ba048d743149ebb53fe3491N.exe

    • Size

      76KB

    • MD5

      a1b4c653d1b19a4dd0d57163359f7220

    • SHA1

      d6d0df75889918f4aa3b7791a88e4baea52f5d1d

    • SHA256

      235bb93e1da0caf00137778a01d5498b36c387405ba048d743149ebb53fe3491

    • SHA512

      92e828cda97642e8fce7d5ad13bc8edefc32da2464da8cc56b2c171df0f1ba12f56b5763824c2ff7c5bed8aa2686053ee78cb0ca86412967aa80d5080f887487

    • SSDEEP

      1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZZu8I24P:c8y93KQjy7G55riF1cMo03zu8CP

    Score
    8/10
    discoveryupxpersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks