Overview

overview

10

Static

static

10

26549420b7...fc.dll

windows7-x64

8

26549420b7...fc.dll

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    26549420b79b6590e218e8ce833c2a41ab5b81e0ba03a6823d497770f3514bfc

  • Size

    76KB

  • Sample

    250102-zhra7svngz

  • MD5

    96d62f2a2df59d076493e383a1d30f4e

  • SHA1

    d445387372f799e0914eeeb878ba8cecbce45194

  • SHA256

    26549420b79b6590e218e8ce833c2a41ab5b81e0ba03a6823d497770f3514bfc

  • SHA512

    563eb4e00fffba14bdd2fa792316f98199dec10225932b6d46c8b8c1a85a1f5ca82b85d0641be6bf63e8b6cfef9e86a513b2bea49a1a6f2e22813b9824599916

  • SSDEEP

    1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7Zjpc8QfsZDCzM:c8y93KQjy7G55riF1cMo035u81ZDCY

Score
10/10
floxifbackdoordiscoverypersistenceprivilege_escalationupx

Malware Config

Targets

    • Target

      26549420b79b6590e218e8ce833c2a41ab5b81e0ba03a6823d497770f3514bfc

    • Size

      76KB

    • MD5

      96d62f2a2df59d076493e383a1d30f4e

    • SHA1

      d445387372f799e0914eeeb878ba8cecbce45194

    • SHA256

      26549420b79b6590e218e8ce833c2a41ab5b81e0ba03a6823d497770f3514bfc

    • SHA512

      563eb4e00fffba14bdd2fa792316f98199dec10225932b6d46c8b8c1a85a1f5ca82b85d0641be6bf63e8b6cfef9e86a513b2bea49a1a6f2e22813b9824599916

    • SSDEEP

      1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7Zjpc8QfsZDCzM:c8y93KQjy7G55riF1cMo035u81ZDCY

    Score
    8/10
    discoverypersistenceprivilege_escalationupx

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks