General

  • Target

    c0d3cc04f12846a8464c995c464db840N.exe

  • Size

    76KB

  • MD5

    c0d3cc04f12846a8464c995c464db840

  • SHA1

    87f00fedc9d4de5627c41248361ad73105502e5a

  • SHA256

    f371982e46c8de32c631ba2603fc4a57ddef40047872fbbc1740f4bd168555ff

  • SHA512

    a47db34ea59da016b9dadaf67c474804795cdbdfbc17d5641bc25b7b995220c63388650adee4ad17ae5c81db382ce9276bf19ec2a5c72bda1268af9337191517

  • SSDEEP

    1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZySA7+:c8y93KQjy7G55riF1cMo038SA7+

Score
10/10

Malware Config

Signatures

  • Detects Floxif payload 1 IoCs
  • Floxif family
  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • c0d3cc04f12846a8464c995c464db840N.exe
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections