General

  • Target

    bff116fc54fadde5726ae83ebf837f10N.exe

  • Size

    1.2MB

  • Sample

    240815-rnkfva1ajj

  • MD5

    bff116fc54fadde5726ae83ebf837f10

  • SHA1

    b6c367321a5ebee817603f5fe9602111cdb510d2

  • SHA256

    5458e519ac68277f150bf4786051d121dda1f4b6dcd679bbc25527bb6f875b9c

  • SHA512

    275d12011675a40ddf8c010a1e3c0fd64c5d203a701f5d02e17566a377b4906d3ab9084b6eaeab9994bf32adb7ad7522bb3c1305ae2b3e3697a8df69ecca59d1

  • SSDEEP

    24576:LF3HV0rHRLfmjHprvHfVg9lDT4Y1dYZVzejkj9Gd6CT1vDd6CT1v1+6H+60rEH7X:LF3HV0rHRLfmjHprvHfVg9x4YrYZmk07

Malware Config

Targets

    • Target

      bff116fc54fadde5726ae83ebf837f10N.exe

    • Size

      1.2MB

    • MD5

      bff116fc54fadde5726ae83ebf837f10

    • SHA1

      b6c367321a5ebee817603f5fe9602111cdb510d2

    • SHA256

      5458e519ac68277f150bf4786051d121dda1f4b6dcd679bbc25527bb6f875b9c

    • SHA512

      275d12011675a40ddf8c010a1e3c0fd64c5d203a701f5d02e17566a377b4906d3ab9084b6eaeab9994bf32adb7ad7522bb3c1305ae2b3e3697a8df69ecca59d1

    • SSDEEP

      24576:LF3HV0rHRLfmjHprvHfVg9lDT4Y1dYZVzejkj9Gd6CT1vDd6CT1v1+6H+60rEH7X:LF3HV0rHRLfmjHprvHfVg9x4YrYZmk07

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

    • Detects Floxif payload

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks