Overview

overview

10

Static

static

10

a3da8aaaf4...d1.dll

windows7-x64

6

a3da8aaaf4...d1.dll

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a3da8aaaf439be346fdb26bb918efaedef2955be88bd4f53860c2a4812fbb5d1

  • Size

    80KB

  • Sample

    241227-bm7lzsxpcp

  • MD5

    bf937b141d9b925050d8dd6c85fbc3a3

  • SHA1

    531cf97ebbe39fd2dcfc6d6090fd9fbb771b3f84

  • SHA256

    a3da8aaaf439be346fdb26bb918efaedef2955be88bd4f53860c2a4812fbb5d1

  • SHA512

    f4bd0793fa8b2d1e60403fd7b973bce457c6e0b87c472e5423fccb22d0c45e886915db38aab88cc42c02a58951efa36e37b0c378639af5b6ac974dd39a449d5a

  • SSDEEP

    1536:5POOhfbOjovgdVydUgoNrwBZXGDaZ1QIxrfItMgR7ZaO+fGxHZPEg6ZV:5dbwovEVyqgoZmZXWfIdQdRaefP2

Score
10/10
floxifbackdoordiscoverypersistenceprivilege_escalationupx

Malware Config

Targets

    • Target

      a3da8aaaf439be346fdb26bb918efaedef2955be88bd4f53860c2a4812fbb5d1

    • Size

      80KB

    • MD5

      bf937b141d9b925050d8dd6c85fbc3a3

    • SHA1

      531cf97ebbe39fd2dcfc6d6090fd9fbb771b3f84

    • SHA256

      a3da8aaaf439be346fdb26bb918efaedef2955be88bd4f53860c2a4812fbb5d1

    • SHA512

      f4bd0793fa8b2d1e60403fd7b973bce457c6e0b87c472e5423fccb22d0c45e886915db38aab88cc42c02a58951efa36e37b0c378639af5b6ac974dd39a449d5a

    • SSDEEP

      1536:5POOhfbOjovgdVydUgoNrwBZXGDaZ1QIxrfItMgR7ZaO+fGxHZPEg6ZV:5dbwovEVyqgoZmZXWfIdQdRaefP2

    Score
    8/10
    discoveryupxpersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Network Service Discovery

      Attempt to gather information on host's network.

      discovery

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks