General

  • Target

    01fe1e5c9b72f9e73b7f8f8f5bc0f5a0N.exe

  • Size

    76KB

  • MD5

    01fe1e5c9b72f9e73b7f8f8f5bc0f5a0

  • SHA1

    e5c77109cf7bb68172d2289971127edd57f4ed1e

  • SHA256

    72ba6759cd29116f29f9286cbc49824c5ffc47d655b42699c25f7925fe3065d4

  • SHA512

    d76643f1721167ef9ec79565dfb4460b94c883b1d018e7eac1f2b71c62ffc1d9d944e646bc6141629c6e318cd24968ede0e40f545f1a08320c26e8a2a0580aa6

  • SSDEEP

    1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZWQ78dmGvLE:c8y93KQjy7G55riF1cMo03RCLE

Score
10/10

Malware Config

Signatures

  • Detects Floxif payload 1 IoCs
  • Floxif family
  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 01fe1e5c9b72f9e73b7f8f8f5bc0f5a0N.exe
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections