Overview

overview

10

Static

static

10

f95d77a9ea...02.dll

windows7-x64

8

f95d77a9ea...02.dll

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f95d77a9ea17867f48f34074ea5a1b3c2c2f0513753cb32dfa6171a45ccd2e02

  • Size

    76KB

  • Sample

    250106-lcv6bavqam

  • MD5

    1407b0287859a2020f6c7cb50bf2d776

  • SHA1

    afe3ea356612ceb3b92c09c6a59048ad05cc7414

  • SHA256

    f95d77a9ea17867f48f34074ea5a1b3c2c2f0513753cb32dfa6171a45ccd2e02

  • SHA512

    91b28e3925cb0ad4e0c2514732d9941ccf3fab6d6650e794f5d817318287e6d5135c417b3ce47fe93b7d4a103e0973da0889a955ba6ab955e30f3c281c748da8

  • SSDEEP

    1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7Zp2T:c8y93KQjy7G55riF1cMo03TQ

Score
10/10
floxifbackdoordiscoverypersistenceprivilege_escalationupx

Malware Config

Targets

    • Target

      f95d77a9ea17867f48f34074ea5a1b3c2c2f0513753cb32dfa6171a45ccd2e02

    • Size

      76KB

    • MD5

      1407b0287859a2020f6c7cb50bf2d776

    • SHA1

      afe3ea356612ceb3b92c09c6a59048ad05cc7414

    • SHA256

      f95d77a9ea17867f48f34074ea5a1b3c2c2f0513753cb32dfa6171a45ccd2e02

    • SHA512

      91b28e3925cb0ad4e0c2514732d9941ccf3fab6d6650e794f5d817318287e6d5135c417b3ce47fe93b7d4a103e0973da0889a955ba6ab955e30f3c281c748da8

    • SSDEEP

      1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7Zp2T:c8y93KQjy7G55riF1cMo03TQ

    Score
    8/10
    discoverypersistenceprivilege_escalationupx

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks