Overview

overview

10

Static

static

10

c1741704f6...85.dll

windows7-x64

8

c1741704f6...85.dll

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c1741704f6a075e5b7426955c89494f5ada245b259464bc42c16dff3bfcf7585

  • Size

    76KB

  • Sample

    241228-cws1mavjfq

  • MD5

    ec6d4d1157aaa3cad25f28415b3b11a4

  • SHA1

    7c27366f719946a026ac26f1ef46a58f8f2954ad

  • SHA256

    c1741704f6a075e5b7426955c89494f5ada245b259464bc42c16dff3bfcf7585

  • SHA512

    76aea51a310dee55edf44c9b492fc2161749bb6bea7f11fa39853110c8b184700c2371119e215c7464c0850ed5181f02053da9669b756b5d2463c2371161c451

  • SSDEEP

    1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZjTeZo1BP:c8y93KQjy7G55riF1cMo03EZwN

Score
10/10
floxifbackdoordiscoverypersistenceprivilege_escalationupx

Malware Config

Targets

    • Target

      c1741704f6a075e5b7426955c89494f5ada245b259464bc42c16dff3bfcf7585

    • Size

      76KB

    • MD5

      ec6d4d1157aaa3cad25f28415b3b11a4

    • SHA1

      7c27366f719946a026ac26f1ef46a58f8f2954ad

    • SHA256

      c1741704f6a075e5b7426955c89494f5ada245b259464bc42c16dff3bfcf7585

    • SHA512

      76aea51a310dee55edf44c9b492fc2161749bb6bea7f11fa39853110c8b184700c2371119e215c7464c0850ed5181f02053da9669b756b5d2463c2371161c451

    • SSDEEP

      1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZjTeZo1BP:c8y93KQjy7G55riF1cMo03EZwN

    Score
    8/10
    discoverypersistenceprivilege_escalationupx

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks