Overview

overview

10

Static

static

10

8375f4d833...47.dll

windows7-x64

5

8375f4d833...47.dll

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8375f4d8331f7cca886e36b676ec66e8e947f905d1d922d888b33fa420fed547

  • Size

    76KB

  • Sample

    250101-anp8nazkdn

  • MD5

    352d02c52ae5a2d81887869d320065aa

  • SHA1

    602f9db19cc15f8a89e5806f330384519210d984

  • SHA256

    8375f4d8331f7cca886e36b676ec66e8e947f905d1d922d888b33fa420fed547

  • SHA512

    304dca17b815c86cb093e09aeae31b3f3d0d3ed1ab9fe8d0c8ee59d9d1883424a1732ed05c848863020bb305e918bf821b5d9336ca2e49273fe123348b74e453

  • SSDEEP

    1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZC0n7A:c8y93KQjy7G55riF1cMo0380n7A

Score
10/10
floxifbackdoordiscoverypersistenceprivilege_escalationupx

Malware Config

Targets

    • Target

      8375f4d8331f7cca886e36b676ec66e8e947f905d1d922d888b33fa420fed547

    • Size

      76KB

    • MD5

      352d02c52ae5a2d81887869d320065aa

    • SHA1

      602f9db19cc15f8a89e5806f330384519210d984

    • SHA256

      8375f4d8331f7cca886e36b676ec66e8e947f905d1d922d888b33fa420fed547

    • SHA512

      304dca17b815c86cb093e09aeae31b3f3d0d3ed1ab9fe8d0c8ee59d9d1883424a1732ed05c848863020bb305e918bf821b5d9336ca2e49273fe123348b74e453

    • SSDEEP

      1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZC0n7A:c8y93KQjy7G55riF1cMo0380n7A

    Score
    8/10
    discoveryupxpersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks