General

  • Target

    efc39cd6a5056df26815d708fee667ee4baa7036fe6802f65ffd459370fa5555

  • Size

    277KB

  • Sample

    240909-3gy67swbmj

  • MD5

    d7e649ab8239bbe488a9823ed1f3560e

  • SHA1

    e8c250dbbc6838d9bee8c900a7f8b8227cf8d9d8

  • SHA256

    efc39cd6a5056df26815d708fee667ee4baa7036fe6802f65ffd459370fa5555

  • SHA512

    988dae8961a06674b9d63c4682d63a8cf88559c4bcd1448829f3b6c5161e19bf705ea3e0f683d2ba401f910efebbf488f47d60d2bcaf1bf1c79c6330a347ea69

  • SSDEEP

    6144:AAil/DRfk9PC3dM7B+mCGBV+UdvrEFp7hKFk:AAilbRfk9+6B+mCGBjvrEH78k

Malware Config

Targets

    • Target

      efc39cd6a5056df26815d708fee667ee4baa7036fe6802f65ffd459370fa5555

    • Size

      277KB

    • MD5

      d7e649ab8239bbe488a9823ed1f3560e

    • SHA1

      e8c250dbbc6838d9bee8c900a7f8b8227cf8d9d8

    • SHA256

      efc39cd6a5056df26815d708fee667ee4baa7036fe6802f65ffd459370fa5555

    • SHA512

      988dae8961a06674b9d63c4682d63a8cf88559c4bcd1448829f3b6c5161e19bf705ea3e0f683d2ba401f910efebbf488f47d60d2bcaf1bf1c79c6330a347ea69

    • SSDEEP

      6144:AAil/DRfk9PC3dM7B+mCGBV+UdvrEFp7hKFk:AAilbRfk9+6B+mCGBjvrEH78k

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

    • Detects Floxif payload

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks