General

  • Target

    b5cfc7588f8553af6967c89855fecab74a1bbccb8b53f3390d6a60069a3c7376

  • Size

    76KB

  • MD5

    bc92d31b8e17809d3c58eb38ca68fa28

  • SHA1

    f4027f29baa783fc692cbb981e1db2d4f7e3c422

  • SHA256

    b5cfc7588f8553af6967c89855fecab74a1bbccb8b53f3390d6a60069a3c7376

  • SHA512

    307022c7018af2838205b284ecad0a332b3144890468a1c48a634aaf967d523f468a2e022220404e64226de0a9c184bc0b78dac50883859523469b310981a271

  • SSDEEP

    1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7Zj5Uh:c8y93KQjy7G55riF1cMo039w

Score
10/10

Malware Config

Signatures

  • Detects Floxif payload 1 IoCs
  • Floxif family
  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • b5cfc7588f8553af6967c89855fecab74a1bbccb8b53f3390d6a60069a3c7376
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections