General

  • Target

    c998b234b60f74ff0bbde7d748b1c690N

  • Size

    2.6MB

  • Sample

    240908-18xfksxhrn

  • MD5

    c998b234b60f74ff0bbde7d748b1c690

  • SHA1

    8038591573ec1bb426b26e30fa766da1001b3212

  • SHA256

    47f1537fae8c0684cff657d3f381e6a90459bad4800978dd5a29ee571e7fd9f5

  • SHA512

    049b3ab80635a0150af97e7199e9ae86bd9729774e26941877134e24fe064d0300ce4fa77ec021af4dcbc7bc1c04df35354ecf5b12df608c03433c568b23095b

  • SSDEEP

    49152:qd0krCjbVYU9U/ElyrLKlvGBO58GBjG9nYM6JBT4PjnhMsQHNClhIdYTf2O+yX32:PkrKyylvGB65YNChghMtHIledkp+R5

Malware Config

Targets

    • Target

      c998b234b60f74ff0bbde7d748b1c690N

    • Size

      2.6MB

    • MD5

      c998b234b60f74ff0bbde7d748b1c690

    • SHA1

      8038591573ec1bb426b26e30fa766da1001b3212

    • SHA256

      47f1537fae8c0684cff657d3f381e6a90459bad4800978dd5a29ee571e7fd9f5

    • SHA512

      049b3ab80635a0150af97e7199e9ae86bd9729774e26941877134e24fe064d0300ce4fa77ec021af4dcbc7bc1c04df35354ecf5b12df608c03433c568b23095b

    • SSDEEP

      49152:qd0krCjbVYU9U/ElyrLKlvGBO58GBjG9nYM6JBT4PjnhMsQHNClhIdYTf2O+yX32:PkrKyylvGB65YNChghMtHIledkp+R5

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

    • Detects Floxif payload

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks