Overview

overview

10

Static

static

10

b172a3d451...6N.dll

windows7-x64

5

b172a3d451...6N.dll

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b172a3d4517930c5e852395450be28133fc05d61769d0bac58e3336a50833406N.exe

  • Size

    76KB

  • Sample

    241226-lmzlgssndn

  • MD5

    81dd432081ba3e5f65d8bf7b12390d30

  • SHA1

    2182ab476e95497ac5735815ed962d734cd491f2

  • SHA256

    b172a3d4517930c5e852395450be28133fc05d61769d0bac58e3336a50833406

  • SHA512

    644d93f7412c6d624c74a662eb4a37eadd231c5c15d32cb4162ee1a71fc4e115c924d34fa45a0e88c7fba94e3436f317e7a76f03f1d45d049f8fdd04743e2631

  • SSDEEP

    1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7Zgdp:c8y93KQjy7G55riF1cMo03W

Score
10/10
floxifbackdoordiscoverypersistenceprivilege_escalationupx

Malware Config

Targets

    • Target

      b172a3d4517930c5e852395450be28133fc05d61769d0bac58e3336a50833406N.exe

    • Size

      76KB

    • MD5

      81dd432081ba3e5f65d8bf7b12390d30

    • SHA1

      2182ab476e95497ac5735815ed962d734cd491f2

    • SHA256

      b172a3d4517930c5e852395450be28133fc05d61769d0bac58e3336a50833406

    • SHA512

      644d93f7412c6d624c74a662eb4a37eadd231c5c15d32cb4162ee1a71fc4e115c924d34fa45a0e88c7fba94e3436f317e7a76f03f1d45d049f8fdd04743e2631

    • SSDEEP

      1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7Zgdp:c8y93KQjy7G55riF1cMo03W

    Score
    8/10
    discoveryupxpersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks