Overview

overview

10

Static

static

10

919886242a...aN.dll

windows7-x64

8

919886242a...aN.dll

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    919886242acd4c66ea51b61fabb15a1a22ecced6951a5d35d09f2da0c5d3675aN.exe

  • Size

    76KB

  • Sample

    250205-btl9masmaw

  • MD5

    9a73fef1ad9900cd28a192798515a780

  • SHA1

    4a211ffaa1ed2d59131f671dc79319699eefa4cd

  • SHA256

    919886242acd4c66ea51b61fabb15a1a22ecced6951a5d35d09f2da0c5d3675a

  • SHA512

    0e6d31ea0d9a50274e469ac5bca871f47471764aabcda2d2592bf9ea5cfbfbb02fd123cb7d9be49f49e690802297267af68d4369bd772f207c6910d06e302727

  • SSDEEP

    1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZzrXgKdjkhp:c8y93KQjy7G55riF1cMo03NgKNkhp

Score
10/10
floxifbackdoordiscoverypersistenceprivilege_escalationupx

Malware Config

Targets

    • Target

      919886242acd4c66ea51b61fabb15a1a22ecced6951a5d35d09f2da0c5d3675aN.exe

    • Size

      76KB

    • MD5

      9a73fef1ad9900cd28a192798515a780

    • SHA1

      4a211ffaa1ed2d59131f671dc79319699eefa4cd

    • SHA256

      919886242acd4c66ea51b61fabb15a1a22ecced6951a5d35d09f2da0c5d3675a

    • SHA512

      0e6d31ea0d9a50274e469ac5bca871f47471764aabcda2d2592bf9ea5cfbfbb02fd123cb7d9be49f49e690802297267af68d4369bd772f207c6910d06e302727

    • SSDEEP

      1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZzrXgKdjkhp:c8y93KQjy7G55riF1cMo03NgKNkhp

    Score
    8/10
    discoverypersistenceprivilege_escalationupx

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks