General

  • Target

    6680857f08eed0735857416d85e0f080N.exe

  • Size

    76KB

  • MD5

    6680857f08eed0735857416d85e0f080

  • SHA1

    f0dc6d17f77dd4dd0573b9091c0711cdee67906c

  • SHA256

    47588a492f3ff75f1915412d89887c2fd0ab7c3f36b32f5745fe4ac1eb569eed

  • SHA512

    9cb47d643d62d2c16b0a7c0745ecec4617c4891a9c1af762d0f0c0f656870183d4204817000a7a447475cdb7ad0dc7374024b289c2ba46171b81b57cf02e2101

  • SSDEEP

    1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7Zi+uPGiWy:c8y93KQjy7G55riF1cMo03sfPSy

Score
10/10

Malware Config

Signatures

  • Detects Floxif payload 1 IoCs
  • Floxif family
  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 6680857f08eed0735857416d85e0f080N.exe
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections