Overview

overview

10

Static

static

10

d68e33ad4d...fa.dll

windows7-x64

8

d68e33ad4d...fa.dll

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d68e33ad4d2104f0b5d6314c3e207824174def7fde5722d64bd416c47c4d62fa

  • Size

    76KB

  • Sample

    250205-fldpqs1kay

  • MD5

    4cca225350fba425d409605efd986349

  • SHA1

    3ef4aafe641a156c348d93829442a54f7523efa5

  • SHA256

    d68e33ad4d2104f0b5d6314c3e207824174def7fde5722d64bd416c47c4d62fa

  • SHA512

    2ef2976eeecb9dc8a9d63d414e5d09c72bea79a98eaca93c02be6762d5414d08fc34847d8f3ba44d08a7e39c7153ef84e452edc6528e22b24a3e08991f690416

  • SSDEEP

    1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZWvYylz:c8y93KQjy7G55riF1cMo03gvj

Score
10/10
floxifbackdoordiscoverypersistenceprivilege_escalationupx

Malware Config

Targets

    • Target

      d68e33ad4d2104f0b5d6314c3e207824174def7fde5722d64bd416c47c4d62fa

    • Size

      76KB

    • MD5

      4cca225350fba425d409605efd986349

    • SHA1

      3ef4aafe641a156c348d93829442a54f7523efa5

    • SHA256

      d68e33ad4d2104f0b5d6314c3e207824174def7fde5722d64bd416c47c4d62fa

    • SHA512

      2ef2976eeecb9dc8a9d63d414e5d09c72bea79a98eaca93c02be6762d5414d08fc34847d8f3ba44d08a7e39c7153ef84e452edc6528e22b24a3e08991f690416

    • SSDEEP

      1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZWvYylz:c8y93KQjy7G55riF1cMo03gvj

    Score
    8/10
    discoverypersistenceprivilege_escalationupx

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks