General
-
Target
97d92c3ea5858b53f93b5c50809e6370N.exe
-
Size
715KB
-
Sample
240722-l13v3a1enf
-
MD5
97d92c3ea5858b53f93b5c50809e6370
-
SHA1
119707086775c62eb74f7971eb2e9f08776c96f9
-
SHA256
3c41e66817d3c9021e70c7bb548260e8788c2ff6547584120ee2d48007605893
-
SHA512
540a74d430d41be535aecd98d9b02c5d4cbce10a3fd21f589a9f9941e9aab4fa55f15cde31affe7f8fd2b7c9322de14249a84da46d5364b11f6a46c9e7e84a3e
-
SSDEEP
12288:5bwRyxUqsPi+JgmDeL3Cdm28UPlH2jXIN6EDfXKrmPfvvrFBjvrEH7G:5bw0guCd/8UPlWjTEDamfvfrEH7G
Malware Config
Targets
-
-
Target
97d92c3ea5858b53f93b5c50809e6370N.exe
-
Size
715KB
-
MD5
97d92c3ea5858b53f93b5c50809e6370
-
SHA1
119707086775c62eb74f7971eb2e9f08776c96f9
-
SHA256
3c41e66817d3c9021e70c7bb548260e8788c2ff6547584120ee2d48007605893
-
SHA512
540a74d430d41be535aecd98d9b02c5d4cbce10a3fd21f589a9f9941e9aab4fa55f15cde31affe7f8fd2b7c9322de14249a84da46d5364b11f6a46c9e7e84a3e
-
SSDEEP
12288:5bwRyxUqsPi+JgmDeL3Cdm28UPlH2jXIN6EDfXKrmPfvvrFBjvrEH7G:5bw0guCd/8UPlWjTEDamfvfrEH7G
Score10/10-
Floxif, Floodfix
Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.
-
Detects Floxif payload
-
Event Triggered Execution: AppInit DLLs
Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.
-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-