FloodFix
FloodFix
FloodFix2
FloodFix2
crc32
crc32
Behavioral task
behavioral1
Sample
01fe1e5c9b72f9e73b7f8f8f5bc0f5a0N.dll
Resource
win7-20240705-en
Target
01fe1e5c9b72f9e73b7f8f8f5bc0f5a0N.exe
Size
76KB
MD5
01fe1e5c9b72f9e73b7f8f8f5bc0f5a0
SHA1
e5c77109cf7bb68172d2289971127edd57f4ed1e
SHA256
72ba6759cd29116f29f9286cbc49824c5ffc47d655b42699c25f7925fe3065d4
SHA512
d76643f1721167ef9ec79565dfb4460b94c883b1d018e7eac1f2b71c62ffc1d9d944e646bc6141629c6e318cd24968ede0e40f545f1a08320c26e8a2a0580aa6
SSDEEP
1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZWQ78dmGvLE:c8y93KQjy7G55riF1cMo03RCLE
Processes:
| resource | yara_rule |
|---|---|
| sample | floxif |
Detects file using ACProtect software.
Processes:
| resource | yara_rule |
|---|---|
| sample | acprotect |
Processes:
| resource | yara_rule |
|---|---|
| sample | upx |
Checks for missing Authenticode signature.
Processes:
| resource |
|---|
| 01fe1e5c9b72f9e73b7f8f8f5bc0f5a0N.exe |
| unpack001/out.upx |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
FloodFix
FloodFix
FloodFix2
FloodFix2
crc32
crc32
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ