FloodFix
FloodFix
FloodFix2
FloodFix2
crc32
crc32
Behavioral task
behavioral1
Sample
c0d3cc04f12846a8464c995c464db840N.dll
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
c0d3cc04f12846a8464c995c464db840N.dll
Resource
win10v2004-20240802-en
Target
c0d3cc04f12846a8464c995c464db840N.exe
Size
76KB
MD5
c0d3cc04f12846a8464c995c464db840
SHA1
87f00fedc9d4de5627c41248361ad73105502e5a
SHA256
f371982e46c8de32c631ba2603fc4a57ddef40047872fbbc1740f4bd168555ff
SHA512
a47db34ea59da016b9dadaf67c474804795cdbdfbc17d5641bc25b7b995220c63388650adee4ad17ae5c81db382ce9276bf19ec2a5c72bda1268af9337191517
SSDEEP
1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZySA7+:c8y93KQjy7G55riF1cMo038SA7+
Processes:
| resource | yara_rule |
|---|---|
| sample | floxif |
Detects file using ACProtect software.
Processes:
| resource | yara_rule |
|---|---|
| sample | acprotect |
Processes:
| resource | yara_rule |
|---|---|
| sample | upx |
Checks for missing Authenticode signature.
Processes:
| resource |
|---|
| c0d3cc04f12846a8464c995c464db840N.exe |
| unpack001/out.upx |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
FloodFix
FloodFix
FloodFix2
FloodFix2
crc32
crc32
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ