Overview

overview

10

Static

static

10

e42bb73cac...7e.dll

windows7-x64

8

e42bb73cac...7e.dll

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e42bb73cace164b918c32878d4100515549b383e5f9f18ae79ef526710f3d27e

  • Size

    76KB

  • Sample

    250102-gg399swnc1

  • MD5

    2ceb28cfe79027500bb745b4243a0e46

  • SHA1

    3f063345e1471b78178a69421b9d2331c40ad349

  • SHA256

    e42bb73cace164b918c32878d4100515549b383e5f9f18ae79ef526710f3d27e

  • SHA512

    cbc10f07b60341e38611fb4b3172e0b1fd4f103ba16692cd965fec2dff7066b3d755916aede132951d5cefa68e50cc500bccb5254dc69f8895e7667b6a32da88

  • SSDEEP

    1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZJ401Hp:c8y93KQjy7G55riF1cMo03z40Np

Score
10/10
floxifbackdoordiscoverypersistenceprivilege_escalationupx

Malware Config

Targets

    • Target

      e42bb73cace164b918c32878d4100515549b383e5f9f18ae79ef526710f3d27e

    • Size

      76KB

    • MD5

      2ceb28cfe79027500bb745b4243a0e46

    • SHA1

      3f063345e1471b78178a69421b9d2331c40ad349

    • SHA256

      e42bb73cace164b918c32878d4100515549b383e5f9f18ae79ef526710f3d27e

    • SHA512

      cbc10f07b60341e38611fb4b3172e0b1fd4f103ba16692cd965fec2dff7066b3d755916aede132951d5cefa68e50cc500bccb5254dc69f8895e7667b6a32da88

    • SSDEEP

      1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZJ401Hp:c8y93KQjy7G55riF1cMo03z40Np

    Score
    8/10
    discoverypersistenceprivilege_escalationupx

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks