FloodFix
FloodFix
FloodFix2
FloodFix2
crc32
crc32
Behavioral task
behavioral1
Sample
42b3476ac872b08cc5751369855cac80e2006f9062ef8dfbab4390f9312a2740.dll
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
42b3476ac872b08cc5751369855cac80e2006f9062ef8dfbab4390f9312a2740.dll
Resource
win10v2004-20240508-en
Target
42b3476ac872b08cc5751369855cac80e2006f9062ef8dfbab4390f9312a2740.exe
Size
76KB
MD5
2a86b12e50fc0796e5c8a14e2a67bce0
SHA1
d13dbdbc4cd1e27f136525755237db0b71defb68
SHA256
42b3476ac872b08cc5751369855cac80e2006f9062ef8dfbab4390f9312a2740
SHA512
69b12249c4fc65bfbfc465b12ba3b9722d67c2e059bee9d9b349fa12fc170c681b3d8bb2699ac732c7cd2a408a54bbc7a068842c9a8961ff47d2a33ad137e44f
SSDEEP
1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7Z+T5c:c8y93KQjy7G55riF1cMo038a
Detects file using ACProtect software.
Processes:
resource | yara_rule |
---|---|
sample | acprotect |
Processes:
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
Processes:
resource |
---|
42b3476ac872b08cc5751369855cac80e2006f9062ef8dfbab4390f9312a2740.exe |
unpack001/out.upx |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
FloodFix
FloodFix
FloodFix2
FloodFix2
crc32
crc32
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ