General

  • Target

    1c2405e76c39841b99f51118181201a7f6dbd8aa16eeef03701ffdad604acad3

  • Size

    2.1MB

  • Sample

    240731-a8zylaxgnn

  • MD5

    4668a4c04a98939b70c84258891738f4

  • SHA1

    3f96b6461b0971f851dc8f47536356f0090f7bb4

  • SHA256

    1c2405e76c39841b99f51118181201a7f6dbd8aa16eeef03701ffdad604acad3

  • SHA512

    42f3d1de345a40ba5042e50575e485d4e0ca2c441ad4b9cf865832263de4e431a44f8669554bb1625960e31b1a3d11e8ae8177504b21218fb8bbd5e692cbced0

  • SSDEEP

    49152:bf83LdZrq17O789a5xymksotcnkLsdBTQ7Q4URkZhM1L:baLdo17O78o5Q6otcnkkBTQ7Q4URR

Malware Config

Targets

    • Target

      1c2405e76c39841b99f51118181201a7f6dbd8aa16eeef03701ffdad604acad3

    • Size

      2.1MB

    • MD5

      4668a4c04a98939b70c84258891738f4

    • SHA1

      3f96b6461b0971f851dc8f47536356f0090f7bb4

    • SHA256

      1c2405e76c39841b99f51118181201a7f6dbd8aa16eeef03701ffdad604acad3

    • SHA512

      42f3d1de345a40ba5042e50575e485d4e0ca2c441ad4b9cf865832263de4e431a44f8669554bb1625960e31b1a3d11e8ae8177504b21218fb8bbd5e692cbced0

    • SSDEEP

      49152:bf83LdZrq17O789a5xymksotcnkLsdBTQ7Q4URkZhM1L:baLdo17O78o5Q6otcnkkBTQ7Q4URR

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

    • Detects Floxif payload

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks