General
-
Target
2024-08-15_e8abfbf4a6fb0174646d5e77f1528e77_bkransomware_floxif
-
Size
4.7MB
-
Sample
240815-mjhn8sybnd
-
MD5
e8abfbf4a6fb0174646d5e77f1528e77
-
SHA1
ba089a8d423b4aaf561a9d50cacf974bae025408
-
SHA256
e85fbe418518206ba8a11ba793c334adffb44a004de014ff4bf310da1d34048b
-
SHA512
75ba5150df8c07e66f5821a921e08275cdf52395d530c192e02689562a0935d8562e2bab36a7fc812cbd3c972af741b615bb9c3fc353fba5b24114481c9b9b24
-
SSDEEP
98304:jBe40bl9dRPenSX5gSoCu0DHDB1dE46V3u/p:w3Nenqu8L/p
Static task
static1
Behavioral task
behavioral1
Sample
2024-08-15_e8abfbf4a6fb0174646d5e77f1528e77_bkransomware_floxif.exe
Resource
win7-20240704-en
Malware Config
Targets
-
-
Target
2024-08-15_e8abfbf4a6fb0174646d5e77f1528e77_bkransomware_floxif
-
Size
4.7MB
-
MD5
e8abfbf4a6fb0174646d5e77f1528e77
-
SHA1
ba089a8d423b4aaf561a9d50cacf974bae025408
-
SHA256
e85fbe418518206ba8a11ba793c334adffb44a004de014ff4bf310da1d34048b
-
SHA512
75ba5150df8c07e66f5821a921e08275cdf52395d530c192e02689562a0935d8562e2bab36a7fc812cbd3c972af741b615bb9c3fc353fba5b24114481c9b9b24
-
SSDEEP
98304:jBe40bl9dRPenSX5gSoCu0DHDB1dE46V3u/p:w3Nenqu8L/p
-
Detects Floxif payload
-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Loads dropped DLL
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-