General

  • Target

    955d219856fa266d0427716395bf34e6db5143868a3cf6cc7b0e71e8027ddc85

  • Size

    76KB

  • MD5

    49233256611acfc3ece58ccf51c5c8d9

  • SHA1

    161b56be84ce4da8540ade99a80f4e0cd05baf35

  • SHA256

    955d219856fa266d0427716395bf34e6db5143868a3cf6cc7b0e71e8027ddc85

  • SHA512

    1272059cb50068045c2b39af6b365f3043c6bbbef72c4d07e061f71e6e9f321d306ef6b3ea5d6ce849ea90bcb8c07aa3e12dcfac4edcdc6b52e64cb5a703432e

  • SSDEEP

    1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZiRQT:c8y93KQjy7G55riF1cMo03My

Score
10/10

Malware Config

Signatures

  • Detects Floxif payload 1 IoCs
  • Floxif family
  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 955d219856fa266d0427716395bf34e6db5143868a3cf6cc7b0e71e8027ddc85
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections