General
-
Target
cb280c2b7b63525a12a5488643d489d0N.exe
-
Size
3.7MB
-
Sample
240805-ymk5bazgqg
-
MD5
cb280c2b7b63525a12a5488643d489d0
-
SHA1
ee4beaa36e6522f451e4f5a32d90f15a3369c850
-
SHA256
79d910f7f6cf4be3876cdfdee5ea755043665124e4ac6221f583d05e9486d6fd
-
SHA512
9dc4491a20f99ef7c182ad6667122bb38dc987e3035b22ec16555c2f8bade6f71b87eefaf7d118ae3ea951feea9777be6d0de4d47a81ab24682bbe261735b550
-
SSDEEP
98304:0FDzRqz+ATGHwX2+SJ8bO+J1CPwDvt3uF7DCLti:OHRqz+ATq58bOK1CPwDvt3uF7DCLti
Malware Config
Targets
-
-
Target
cb280c2b7b63525a12a5488643d489d0N.exe
-
Size
3.7MB
-
MD5
cb280c2b7b63525a12a5488643d489d0
-
SHA1
ee4beaa36e6522f451e4f5a32d90f15a3369c850
-
SHA256
79d910f7f6cf4be3876cdfdee5ea755043665124e4ac6221f583d05e9486d6fd
-
SHA512
9dc4491a20f99ef7c182ad6667122bb38dc987e3035b22ec16555c2f8bade6f71b87eefaf7d118ae3ea951feea9777be6d0de4d47a81ab24682bbe261735b550
-
SSDEEP
98304:0FDzRqz+ATGHwX2+SJ8bO+J1CPwDvt3uF7DCLti:OHRqz+ATq58bOK1CPwDvt3uF7DCLti
Score10/10-
Floxif, Floodfix
Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.
-
Detects Floxif payload
-
Event Triggered Execution: AppInit DLLs
Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.
-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-