Overview

overview

10

Static

static

10

8d2507c763...87.dll

windows7-x64

8

8d2507c763...87.dll

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8d2507c7636976a4953525619bf1187fbb6bbd818d7997367e0af32f89cb1987.exe

  • Size

    76KB

  • Sample

    250102-gpcsaawqht

  • MD5

    faebd3258436c00d13a96f153b22d65c

  • SHA1

    4fd9b4ecbf6dc8ac497609bd5e46652339eb41c1

  • SHA256

    8d2507c7636976a4953525619bf1187fbb6bbd818d7997367e0af32f89cb1987

  • SHA512

    673a1c351b3c7b8b472d1e47217817439317e436ef4ba07ed627347fa79d1bf40ad4716a6f035958a356895db3ccd1fbc746766384d12e85c87bd45945fbb84d

  • SSDEEP

    1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZBmb23a:c8y93KQjy7G55riF1cMo03WbH

Score
10/10
floxifbackdoordiscoverypersistenceprivilege_escalationupx

Malware Config

Targets

    • Target

      8d2507c7636976a4953525619bf1187fbb6bbd818d7997367e0af32f89cb1987.exe

    • Size

      76KB

    • MD5

      faebd3258436c00d13a96f153b22d65c

    • SHA1

      4fd9b4ecbf6dc8ac497609bd5e46652339eb41c1

    • SHA256

      8d2507c7636976a4953525619bf1187fbb6bbd818d7997367e0af32f89cb1987

    • SHA512

      673a1c351b3c7b8b472d1e47217817439317e436ef4ba07ed627347fa79d1bf40ad4716a6f035958a356895db3ccd1fbc746766384d12e85c87bd45945fbb84d

    • SSDEEP

      1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZBmb23a:c8y93KQjy7G55riF1cMo03WbH

    Score
    8/10
    discoverypersistenceprivilege_escalationupx

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks