General

  • Target

    b606d42812104286eb781407aeba4080N.exe

  • Size

    76KB

  • MD5

    b606d42812104286eb781407aeba4080

  • SHA1

    a2783dd50c5fa3e909c667288e24e3cc4ef09ca9

  • SHA256

    4ed75b442c522d8fb0596cdd320f56241cff0e7b132eba186e82cb46ea61025a

  • SHA512

    3dba3aa4cf948d836f10d8a53e4e4e661d9cf510097d19743f3b42e056cb49ba49636ffbc9ac7e63fad347fd826e2f572785a761d5007db004b15391d55466b3

  • SSDEEP

    1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7Zg4T:c8y93KQjy7G55riF1cMo03u8

Score
10/10

Malware Config

Signatures

  • Detects Floxif payload 1 IoCs
  • Floxif family
  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • b606d42812104286eb781407aeba4080N.exe
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections