Overview

overview

10

Static

static

10

c4ae56475b...3b.dll

windows7-x64

5

c4ae56475b...3b.dll

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c4ae56475b28d214ada087738ba04d87884229af54f678f922c036527ee6ee3b.exe

  • Size

    76KB

  • Sample

    250101-q534vaxjdx

  • MD5

    f6ac7c69b436cafed14c95d2786c2654

  • SHA1

    8e1cdaedfe967034568b3c462dcab4357b7d75a9

  • SHA256

    c4ae56475b28d214ada087738ba04d87884229af54f678f922c036527ee6ee3b

  • SHA512

    116b359571450c1de0697600006efb8caed90419a7e942860d7022982ef4aba0468f56c24348f9ebde0d327ba835186cd32b73767bc685bfd1c492026509b0ee

  • SSDEEP

    1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZpHzVckEOe:c8y93KQjy7G55riF1cMo033TV2Oe

Score
10/10
floxifbackdoordiscoverypersistenceprivilege_escalationupx

Malware Config

Targets

    • Target

      c4ae56475b28d214ada087738ba04d87884229af54f678f922c036527ee6ee3b.exe

    • Size

      76KB

    • MD5

      f6ac7c69b436cafed14c95d2786c2654

    • SHA1

      8e1cdaedfe967034568b3c462dcab4357b7d75a9

    • SHA256

      c4ae56475b28d214ada087738ba04d87884229af54f678f922c036527ee6ee3b

    • SHA512

      116b359571450c1de0697600006efb8caed90419a7e942860d7022982ef4aba0468f56c24348f9ebde0d327ba835186cd32b73767bc685bfd1c492026509b0ee

    • SSDEEP

      1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZpHzVckEOe:c8y93KQjy7G55riF1cMo033TV2Oe

    Score
    8/10
    discoveryupxpersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks