General
-
Target
2058160d063f9a7e71b05b8208c49200.exe
-
Size
1.3MB
-
Sample
240706-atfleazgjq
-
MD5
2058160d063f9a7e71b05b8208c49200
-
SHA1
3d0a03ddf4b71cc2097caa18cdec4c444f6d0cec
-
SHA256
d7db35819b6c061ff43efb2db758fe8225ec5b28781347aaf663d80f30e9ad63
-
SHA512
cd9f20f58e0847e31a84f51d7ff2999c0cb99ec55bfe91463854f02b9b9c33ccbe6ba47355c015da4682f362a623b7e0370cb0df6d28900333b28e25906accd0
-
SSDEEP
24576:4CgNcIR8ata3635qrZs3oUQ+OYjslR526siGlVqnWav6e5qRoTrEH7s:Ra8+IG3MdYjsrGidJv6e5Ak
Malware Config
Targets
-
-
Target
2058160d063f9a7e71b05b8208c49200.exe
-
Size
1.3MB
-
MD5
2058160d063f9a7e71b05b8208c49200
-
SHA1
3d0a03ddf4b71cc2097caa18cdec4c444f6d0cec
-
SHA256
d7db35819b6c061ff43efb2db758fe8225ec5b28781347aaf663d80f30e9ad63
-
SHA512
cd9f20f58e0847e31a84f51d7ff2999c0cb99ec55bfe91463854f02b9b9c33ccbe6ba47355c015da4682f362a623b7e0370cb0df6d28900333b28e25906accd0
-
SSDEEP
24576:4CgNcIR8ata3635qrZs3oUQ+OYjslR526siGlVqnWav6e5qRoTrEH7s:Ra8+IG3MdYjsrGidJv6e5Ak
Score10/10-
Floxif, Floodfix
Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.
-
Detects Floxif payload
-
Event Triggered Execution: AppInit DLLs
Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.
-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-