General

  • Target

    a403affd715a5deb6be59d7772547500N.exe

  • Size

    1.2MB

  • Sample

    240816-hynrkswbmn

  • MD5

    a403affd715a5deb6be59d7772547500

  • SHA1

    747a738b57160e9d9aaa4c17a09ec1f7517c7898

  • SHA256

    234c956c3ea6fb222868a240f9f5a878642d7ef162dd3a2d4ee50df2131a1f7f

  • SHA512

    84f0bb702aa643ffd6f1bddffe45839521e363000d76ba947e2caec95fbfe8ead3226ce4602fa79a0b9437707101ae916795276167b55511aa317b8e82e60d5d

  • SSDEEP

    24576:LF3HV0rHRLfmjHprvHfVg9lDT4Y1WYZVzeMkq9Gd6CT1vDd6CT1v1+6H+60rEH78:LF3HV0rHRLfmjHprvHfVg9x4YgYZRkJo

Malware Config

Targets

    • Target

      a403affd715a5deb6be59d7772547500N.exe

    • Size

      1.2MB

    • MD5

      a403affd715a5deb6be59d7772547500

    • SHA1

      747a738b57160e9d9aaa4c17a09ec1f7517c7898

    • SHA256

      234c956c3ea6fb222868a240f9f5a878642d7ef162dd3a2d4ee50df2131a1f7f

    • SHA512

      84f0bb702aa643ffd6f1bddffe45839521e363000d76ba947e2caec95fbfe8ead3226ce4602fa79a0b9437707101ae916795276167b55511aa317b8e82e60d5d

    • SSDEEP

      24576:LF3HV0rHRLfmjHprvHfVg9lDT4Y1WYZVzeMkq9Gd6CT1vDd6CT1v1+6H+60rEH78:LF3HV0rHRLfmjHprvHfVg9x4YgYZRkJo

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

    • Detects Floxif payload

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks