Overview

overview

10

Static

static

10

728d4475a5...a5.dll

windows7-x64

5

728d4475a5...a5.dll

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    728d4475a568f8dc85ed212595bdfcf8937cf85e9e0ee48d4b05469d3a07b0a5.exe

  • Size

    76KB

  • Sample

    250205-jjytnsykgr

  • MD5

    cbfbcddac26ed45f8a28796fb3c29ad8

  • SHA1

    08a5cfbb174dc970f71ffc4383b2094138d3adc1

  • SHA256

    728d4475a568f8dc85ed212595bdfcf8937cf85e9e0ee48d4b05469d3a07b0a5

  • SHA512

    ca9a7637309b386b3c22651d1551a9a318b0bb2eb45b1379cddc6f9f15b879b49ac2fef5dde45bc40685dac8e7511df06acd34b4f00e0ee6d7aa219dc0367b3d

  • SSDEEP

    1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZTKMvw5B3:c8y93KQjy7G55riF1cMo03Lve

Score
10/10
floxifbackdoordiscoverypersistenceprivilege_escalationupx

Malware Config

Targets

    • Target

      728d4475a568f8dc85ed212595bdfcf8937cf85e9e0ee48d4b05469d3a07b0a5.exe

    • Size

      76KB

    • MD5

      cbfbcddac26ed45f8a28796fb3c29ad8

    • SHA1

      08a5cfbb174dc970f71ffc4383b2094138d3adc1

    • SHA256

      728d4475a568f8dc85ed212595bdfcf8937cf85e9e0ee48d4b05469d3a07b0a5

    • SHA512

      ca9a7637309b386b3c22651d1551a9a318b0bb2eb45b1379cddc6f9f15b879b49ac2fef5dde45bc40685dac8e7511df06acd34b4f00e0ee6d7aa219dc0367b3d

    • SSDEEP

      1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZTKMvw5B3:c8y93KQjy7G55riF1cMo03Lve

    Score
    8/10
    discoveryupxpersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks