General
-
Target
67942ffdd8accdcb0631c6e1354387d0N.exe
-
Size
512KB
-
Sample
240806-ghd2rs1djl
-
MD5
67942ffdd8accdcb0631c6e1354387d0
-
SHA1
0d67f037dd392e5e1b1b6a1726d17e670abd55fc
-
SHA256
23d7ec298941624c377a5c0ca092a3fcb7c99908587e44ba870e67f22a5edd16
-
SHA512
cb026def2d61f326d6301beeb7225311d21c0d3c8cc98998a4282e88646137ea7e1ad4b4a67820958d943bf1db4c448e7fbe1581810fbd5554cb0b267fe90991
-
SSDEEP
12288:wN0h4RFKz/L7ROhMqcY133L1YkCKipTfq1BYbJllBjvrEH7u:wNHRFKz/L7Rvu6kmraKzrEH7u
Malware Config
Targets
-
-
Target
67942ffdd8accdcb0631c6e1354387d0N.exe
-
Size
512KB
-
MD5
67942ffdd8accdcb0631c6e1354387d0
-
SHA1
0d67f037dd392e5e1b1b6a1726d17e670abd55fc
-
SHA256
23d7ec298941624c377a5c0ca092a3fcb7c99908587e44ba870e67f22a5edd16
-
SHA512
cb026def2d61f326d6301beeb7225311d21c0d3c8cc98998a4282e88646137ea7e1ad4b4a67820958d943bf1db4c448e7fbe1581810fbd5554cb0b267fe90991
-
SSDEEP
12288:wN0h4RFKz/L7ROhMqcY133L1YkCKipTfq1BYbJllBjvrEH7u:wNHRFKz/L7Rvu6kmraKzrEH7u
Score10/10-
Floxif, Floodfix
Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.
-
Detects Floxif payload
-
Event Triggered Execution: AppInit DLLs
Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.
-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-