General

  • Target

    3b7e7edfbb72a1ebe22298f61aa7a1d1f34cbd2571a4b613c2a437f23c55042a

  • Size

    853KB

  • Sample

    240908-zrv1ravdrk

  • MD5

    b9c902e49b7dd1c68f68710ee179e641

  • SHA1

    f41470f0d9b264af42a216ca87a2de1beeabfda3

  • SHA256

    3b7e7edfbb72a1ebe22298f61aa7a1d1f34cbd2571a4b613c2a437f23c55042a

  • SHA512

    90c87c7c63f918159096b4042bb3e560a72c441d45d8e88410dd7727bd01d69fc770d3b0152c6ae7b81585836f35b34f620328a93318dc79b81d7f3183d25f19

  • SSDEEP

    24576:6dcSA7nJ1DVBEdbWoHk7lGRTbSpNTNTyxrEH7UL:kAINE7lOTbGTyl

Malware Config

Targets

    • Target

      3b7e7edfbb72a1ebe22298f61aa7a1d1f34cbd2571a4b613c2a437f23c55042a

    • Size

      853KB

    • MD5

      b9c902e49b7dd1c68f68710ee179e641

    • SHA1

      f41470f0d9b264af42a216ca87a2de1beeabfda3

    • SHA256

      3b7e7edfbb72a1ebe22298f61aa7a1d1f34cbd2571a4b613c2a437f23c55042a

    • SHA512

      90c87c7c63f918159096b4042bb3e560a72c441d45d8e88410dd7727bd01d69fc770d3b0152c6ae7b81585836f35b34f620328a93318dc79b81d7f3183d25f19

    • SSDEEP

      24576:6dcSA7nJ1DVBEdbWoHk7lGRTbSpNTNTyxrEH7UL:kAINE7lOTbGTyl

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

    • Detects Floxif payload

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks