Overview

overview

10

Static

static

10

b15437fc76...d3.dll

windows7-x64

6

b15437fc76...d3.dll

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b15437fc76b3d06fa4b6ff903611c14f89e84bed14213493e9d9bf8f424d83d3.exe

  • Size

    80KB

  • Sample

    241225-x11w9atqhj

  • MD5

    b7d38da075892a125e8f9ce9c40ea437

  • SHA1

    31f004e8ecb17ba6e6cfa359b98cdd966682717a

  • SHA256

    b15437fc76b3d06fa4b6ff903611c14f89e84bed14213493e9d9bf8f424d83d3

  • SHA512

    95ef3abd12796fe82f511a673d3c6acc3921a0cbd66c8bcb88aa3e81c4c251d20d08577235e857f67e759e757090a3e93a75b36294f9ec39c95b8d9c86698a2e

  • SSDEEP

    1536:5POOhfbOjovgdVydUgoNrwBZXGDaZ1QIxrfItMgR7ZaO+fGxHZPEANHOjv:5dbwovEVyqgoZmZXWfIdQdRaefPDHOjv

Score
10/10
floxifbackdoordiscoverypersistenceprivilege_escalationupx

Malware Config

Targets

    • Target

      b15437fc76b3d06fa4b6ff903611c14f89e84bed14213493e9d9bf8f424d83d3.exe

    • Size

      80KB

    • MD5

      b7d38da075892a125e8f9ce9c40ea437

    • SHA1

      31f004e8ecb17ba6e6cfa359b98cdd966682717a

    • SHA256

      b15437fc76b3d06fa4b6ff903611c14f89e84bed14213493e9d9bf8f424d83d3

    • SHA512

      95ef3abd12796fe82f511a673d3c6acc3921a0cbd66c8bcb88aa3e81c4c251d20d08577235e857f67e759e757090a3e93a75b36294f9ec39c95b8d9c86698a2e

    • SSDEEP

      1536:5POOhfbOjovgdVydUgoNrwBZXGDaZ1QIxrfItMgR7ZaO+fGxHZPEANHOjv:5dbwovEVyqgoZmZXWfIdQdRaefPDHOjv

    Score
    8/10
    discoveryupxpersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Network Service Discovery

      Attempt to gather information on host's network.

      discovery

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks