Overview

overview

10

Static

static

10

fce4eaa4e8...fb.dll

windows7-x64

8

fce4eaa4e8...fb.dll

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fce4eaa4e8275520a7a04946b2c4f96d4b3cf4c808ead54ac5b9a7d594cbedfb

  • Size

    76KB

  • Sample

    250304-l4jatsylt7

  • MD5

    a5dbe8af4196e86872f16d32d3b8f74e

  • SHA1

    f6d2105ecde44ecfa60e26e9a60cb9953edb9457

  • SHA256

    fce4eaa4e8275520a7a04946b2c4f96d4b3cf4c808ead54ac5b9a7d594cbedfb

  • SHA512

    919dc94d1802d03ba02a53d9c7528464dd8cda3787285a44fecc73f57ba2e0c7b6a3925439191f7fbedadb57c444948cb51bafd500b80ce405299607a9beda07

  • SSDEEP

    1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZF2nvlkG:c8y93KQjy7G55riF1cMo03zslkG

Score
10/10
floxifbackdoordiscoverypersistenceprivilege_escalationupx

Malware Config

Targets

    • Target

      fce4eaa4e8275520a7a04946b2c4f96d4b3cf4c808ead54ac5b9a7d594cbedfb

    • Size

      76KB

    • MD5

      a5dbe8af4196e86872f16d32d3b8f74e

    • SHA1

      f6d2105ecde44ecfa60e26e9a60cb9953edb9457

    • SHA256

      fce4eaa4e8275520a7a04946b2c4f96d4b3cf4c808ead54ac5b9a7d594cbedfb

    • SHA512

      919dc94d1802d03ba02a53d9c7528464dd8cda3787285a44fecc73f57ba2e0c7b6a3925439191f7fbedadb57c444948cb51bafd500b80ce405299607a9beda07

    • SSDEEP

      1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZF2nvlkG:c8y93KQjy7G55riF1cMo03zslkG

    Score
    8/10
    discoverypersistenceprivilege_escalationupx

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks