Overview

overview

10

Static

static

10

8fb4902480...de.dll

windows7-x64

5

8fb4902480...de.dll

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8fb4902480d2285064f23f67a4a44ff27d64f321715204fd6314ea3462bac5de.exe

  • Size

    76KB

  • Sample

    250120-dbmtjsxrhk

  • MD5

    c2b53ee44ea989bc82f7c01c517298bd

  • SHA1

    4eab655b98882d585491cd2d96d86835aba4f8a8

  • SHA256

    8fb4902480d2285064f23f67a4a44ff27d64f321715204fd6314ea3462bac5de

  • SHA512

    74f9bd94c18c3308aad0dad0691b4ad1cedf7402acad2243568d3c7f13a5d227215bea122e46a69dd5d07274c9a59ebf1c20eb8166c383bdc54887e3cacebdfd

  • SSDEEP

    1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZLi09pLB:c8y93KQjy7G55riF1cMo03J3B

Score
10/10
floxifbackdoordiscoverypersistenceprivilege_escalationupx

Malware Config

Targets

    • Target

      8fb4902480d2285064f23f67a4a44ff27d64f321715204fd6314ea3462bac5de.exe

    • Size

      76KB

    • MD5

      c2b53ee44ea989bc82f7c01c517298bd

    • SHA1

      4eab655b98882d585491cd2d96d86835aba4f8a8

    • SHA256

      8fb4902480d2285064f23f67a4a44ff27d64f321715204fd6314ea3462bac5de

    • SHA512

      74f9bd94c18c3308aad0dad0691b4ad1cedf7402acad2243568d3c7f13a5d227215bea122e46a69dd5d07274c9a59ebf1c20eb8166c383bdc54887e3cacebdfd

    • SSDEEP

      1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZLi09pLB:c8y93KQjy7G55riF1cMo03J3B

    Score
    8/10
    discoveryupxpersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks