Overview

overview

10

Static

static

10

737f86899c...09.dll

windows7-x64

8

737f86899c...09.dll

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    737f86899c079deb7468ae0ca3f479a492f6b9cd472c1174015a3a43571daa09

  • Size

    76KB

  • Sample

    250110-c3pxjs1pcp

  • MD5

    cee6cff751c38975399039e234ccde6c

  • SHA1

    6e37eb22abafca449054898ea8f0fd60f13512f4

  • SHA256

    737f86899c079deb7468ae0ca3f479a492f6b9cd472c1174015a3a43571daa09

  • SHA512

    ccaeb8d5b69a747c952f3f9ba30200e2da212fe1ceaf04324d99f7b87e225f3c77570486d800a0ca05f57e0a07d0f676c268aaa77cd0580f5957d3af088829aa

  • SSDEEP

    1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZBTG7p:c8y93KQjy7G55riF1cMo03bTE

Score
10/10
floxifbackdoordiscoverypersistenceprivilege_escalationupx

Malware Config

Targets

    • Target

      737f86899c079deb7468ae0ca3f479a492f6b9cd472c1174015a3a43571daa09

    • Size

      76KB

    • MD5

      cee6cff751c38975399039e234ccde6c

    • SHA1

      6e37eb22abafca449054898ea8f0fd60f13512f4

    • SHA256

      737f86899c079deb7468ae0ca3f479a492f6b9cd472c1174015a3a43571daa09

    • SHA512

      ccaeb8d5b69a747c952f3f9ba30200e2da212fe1ceaf04324d99f7b87e225f3c77570486d800a0ca05f57e0a07d0f676c268aaa77cd0580f5957d3af088829aa

    • SSDEEP

      1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZBTG7p:c8y93KQjy7G55riF1cMo03bTE

    Score
    8/10
    discoverypersistenceprivilege_escalationupx

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks