General

  • Target

    bb0d1e8f3446f47e4cd59abfb08af930N.exe

  • Size

    80KB

  • MD5

    bb0d1e8f3446f47e4cd59abfb08af930

  • SHA1

    3605a8d0748e0135cd3cef9c85fe7a36fa64de2d

  • SHA256

    c8e55a8562af00cbc28c55b00beaf6a9bcf8d0b2187044df97eaef3fe0638731

  • SHA512

    e57f4dfe24656ba4952a8771bbbc0314107dd350deffc17d51145909bf99e80be1dab0b9762d0037440e588d74de24fbd6fd611245c98ded8db79a2748008809

  • SSDEEP

    1536:5POOhfbOjovgdVydUgoNrwBZXGDaZ1QIxrfItMgR7ZaO+fGxHZPE47:5dbwovEVyqgoZmZXWfIdQdRaefPN7

Score
10/10

Malware Config

Signatures

  • Detects Floxif payload 1 IoCs
  • Floxif family
  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • bb0d1e8f3446f47e4cd59abfb08af930N.exe
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections