Overview

overview

10

Static

static

10

53791b5303...b5.dll

windows7-x64

5

53791b5303...b5.dll

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    53791b530339208dd7c5b3a3ffb9c6173c8c7b8806825d43cdc77796061792b5.exe

  • Size

    76KB

  • Sample

    250108-zb17tsvlfk

  • MD5

    2ec56d43a590f23d00d27891787e969c

  • SHA1

    449911b7c9947169b876f1764c1fe49d0d92b6c7

  • SHA256

    53791b530339208dd7c5b3a3ffb9c6173c8c7b8806825d43cdc77796061792b5

  • SHA512

    a357795f059fb51a9d81c0102a1b2d0a8811414b9569d62f49a1acc2a31c12439295a3d186f5f67d844af9ef9755556d15a94f51444baf37460571f6319cf576

  • SSDEEP

    1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7Z/C4MLwaBa:c8y93KQjy7G55riF1cMo03FCBLBBa

Score
10/10
floxifbackdoordiscoverypersistenceprivilege_escalationupx

Malware Config

Targets

    • Target

      53791b530339208dd7c5b3a3ffb9c6173c8c7b8806825d43cdc77796061792b5.exe

    • Size

      76KB

    • MD5

      2ec56d43a590f23d00d27891787e969c

    • SHA1

      449911b7c9947169b876f1764c1fe49d0d92b6c7

    • SHA256

      53791b530339208dd7c5b3a3ffb9c6173c8c7b8806825d43cdc77796061792b5

    • SHA512

      a357795f059fb51a9d81c0102a1b2d0a8811414b9569d62f49a1acc2a31c12439295a3d186f5f67d844af9ef9755556d15a94f51444baf37460571f6319cf576

    • SSDEEP

      1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7Z/C4MLwaBa:c8y93KQjy7G55riF1cMo03FCBLBBa

    Score
    8/10
    discoveryupxpersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks