Overview

overview

10

Static

static

10

3e531b19d3...99.dll

windows7-x64

8

3e531b19d3...99.dll

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3e531b19d3d07855abf00d8f2ca93bef5207ce2b952c2ffe36977f4f247b5299.exe

  • Size

    76KB

  • Sample

    250127-pfdxzsynfk

  • MD5

    1a2e829b0c1fa6201bd0242ffe215b8d

  • SHA1

    c0975d482df3cb5e8cfc4bf7513819fc03431db8

  • SHA256

    3e531b19d3d07855abf00d8f2ca93bef5207ce2b952c2ffe36977f4f247b5299

  • SHA512

    d9c4c71525a5a4b3b88e781bcb8c437b71540045b864f1b03080eb1a1101e03216b875e25c3994f97494882e20669b7430b8e55cd7f85028bc96744a18f4a5dd

  • SSDEEP

    1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZqLm6:c8y93KQjy7G55riF1cMo034LX

Score
10/10
floxifbackdoordiscoverypersistenceprivilege_escalationupx

Malware Config

Targets

    • Target

      3e531b19d3d07855abf00d8f2ca93bef5207ce2b952c2ffe36977f4f247b5299.exe

    • Size

      76KB

    • MD5

      1a2e829b0c1fa6201bd0242ffe215b8d

    • SHA1

      c0975d482df3cb5e8cfc4bf7513819fc03431db8

    • SHA256

      3e531b19d3d07855abf00d8f2ca93bef5207ce2b952c2ffe36977f4f247b5299

    • SHA512

      d9c4c71525a5a4b3b88e781bcb8c437b71540045b864f1b03080eb1a1101e03216b875e25c3994f97494882e20669b7430b8e55cd7f85028bc96744a18f4a5dd

    • SSDEEP

      1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZqLm6:c8y93KQjy7G55riF1cMo034LX

    Score
    8/10
    discoverypersistenceprivilege_escalationupx

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks