Overview

overview

10

Static

static

10

e3834a6164...8c.dll

windows7-x64

8

e3834a6164...8c.dll

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e3834a616425b9cfaab79af4f43fb45a780b9347dcabd3e3bd4d2b517fb7398c

  • Size

    76KB

  • Sample

    250110-lbxmrasmhk

  • MD5

    3b9aadb73c5d9be33686d5477475972f

  • SHA1

    1b18b7442505802a2b0aeb6d0af6975c2cb6a276

  • SHA256

    e3834a616425b9cfaab79af4f43fb45a780b9347dcabd3e3bd4d2b517fb7398c

  • SHA512

    56d5f50bbaf6c4d981f6b58a3f416d8478ff8a9b0614bc77e4ecf5ad69bb269f128dc49dc492ec579bc148cd66b2fbb86764440eab319e3f832d6e57fcb00664

  • SSDEEP

    1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7Z9WDb93ktit:c8y93KQjy7G55riF1cMo03jVW

Score
10/10
floxifbackdoordiscoverypersistenceprivilege_escalationupx

Malware Config

Targets

    • Target

      e3834a616425b9cfaab79af4f43fb45a780b9347dcabd3e3bd4d2b517fb7398c

    • Size

      76KB

    • MD5

      3b9aadb73c5d9be33686d5477475972f

    • SHA1

      1b18b7442505802a2b0aeb6d0af6975c2cb6a276

    • SHA256

      e3834a616425b9cfaab79af4f43fb45a780b9347dcabd3e3bd4d2b517fb7398c

    • SHA512

      56d5f50bbaf6c4d981f6b58a3f416d8478ff8a9b0614bc77e4ecf5ad69bb269f128dc49dc492ec579bc148cd66b2fbb86764440eab319e3f832d6e57fcb00664

    • SSDEEP

      1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7Z9WDb93ktit:c8y93KQjy7G55riF1cMo03jVW

    Score
    8/10
    discoverypersistenceprivilege_escalationupx

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks