General

  • Target

    398cf8fdc661061b18ccd2209982e9d93832259e856a12e290d2f8c4227d8caf

  • Size

    76KB

  • MD5

    4b03dc4740d7dd0ebc988a47a3a160e8

  • SHA1

    f3f2dbabc293289c89c052feacb633b20ddbcf72

  • SHA256

    398cf8fdc661061b18ccd2209982e9d93832259e856a12e290d2f8c4227d8caf

  • SHA512

    43f1baa56d153c8e2dd6b2704691d95a5486c6b7d2d62774db5263bce8c5c676591be55a1653e50c0491f918dbf044065af1fa8a0a129baa2895acbc4f853f8c

  • SSDEEP

    1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7Zjykr:c8y93KQjy7G55riF1cMo03dr

Score
10/10

Malware Config

Signatures

  • Detects Floxif payload 1 IoCs
  • Floxif family
  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 398cf8fdc661061b18ccd2209982e9d93832259e856a12e290d2f8c4227d8caf
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections