Overview

overview

10

Static

static

10

eb6e50a38b...7N.dll

windows7-x64

8

eb6e50a38b...7N.dll

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    eb6e50a38b4bb3144f608f9a051404b2ef47bb1ee595ae690e8710e397e71ae7N.exe

  • Size

    203KB

  • Sample

    250103-vdh2tawqep

  • MD5

    3f0a0e920c7c70c7dd6b9e8133673980

  • SHA1

    b3033d8b577bbb3972d5163bf0bd24fd928d0d79

  • SHA256

    eb6e50a38b4bb3144f608f9a051404b2ef47bb1ee595ae690e8710e397e71ae7

  • SHA512

    6326ca0078221082583b870e2795377e072a677decc70fc49135e382015a41c2c954c523e3965236cc11cefa06ac9f3ff4f12ed617a2bc645420a37de84567ea

  • SSDEEP

    3072:aJ8IMILmCa3yx6oFEdgVXnF6C9Ugfxm32n7SpiMH2:5kmCaiEoFEd+F3txm2SpiMW

Score
10/10
floxifbackdoordiscoverypersistenceprivilege_escalationupx

Malware Config

Targets

    • Target

      eb6e50a38b4bb3144f608f9a051404b2ef47bb1ee595ae690e8710e397e71ae7N.exe

    • Size

      203KB

    • MD5

      3f0a0e920c7c70c7dd6b9e8133673980

    • SHA1

      b3033d8b577bbb3972d5163bf0bd24fd928d0d79

    • SHA256

      eb6e50a38b4bb3144f608f9a051404b2ef47bb1ee595ae690e8710e397e71ae7

    • SHA512

      6326ca0078221082583b870e2795377e072a677decc70fc49135e382015a41c2c954c523e3965236cc11cefa06ac9f3ff4f12ed617a2bc645420a37de84567ea

    • SSDEEP

      3072:aJ8IMILmCa3yx6oFEdgVXnF6C9Ugfxm32n7SpiMH2:5kmCaiEoFEd+F3txm2SpiMW

    Score
    8/10
    discoverypersistenceprivilege_escalationupx

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks