FloodFix
FloodFix
FloodFix2
FloodFix2
crc32
crc32
Behavioral task
behavioral1
Sample
b606d42812104286eb781407aeba4080N.dll
Resource
win7-20240705-en
Target
b606d42812104286eb781407aeba4080N.exe
Size
76KB
MD5
b606d42812104286eb781407aeba4080
SHA1
a2783dd50c5fa3e909c667288e24e3cc4ef09ca9
SHA256
4ed75b442c522d8fb0596cdd320f56241cff0e7b132eba186e82cb46ea61025a
SHA512
3dba3aa4cf948d836f10d8a53e4e4e661d9cf510097d19743f3b42e056cb49ba49636ffbc9ac7e63fad347fd826e2f572785a761d5007db004b15391d55466b3
SSDEEP
1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7Zg4T:c8y93KQjy7G55riF1cMo03u8
Processes:
| resource | yara_rule |
|---|---|
| sample | floxif |
Detects file using ACProtect software.
Processes:
| resource | yara_rule |
|---|---|
| sample | acprotect |
Processes:
| resource | yara_rule |
|---|---|
| sample | upx |
Checks for missing Authenticode signature.
Processes:
| resource |
|---|
| b606d42812104286eb781407aeba4080N.exe |
| unpack001/out.upx |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
FloodFix
FloodFix
FloodFix2
FloodFix2
crc32
crc32
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ