General

  • Target

    87a7ad1cb40613009e8fff356f7afa4b56703d51923b0ba5c8855b3737adf7e4

  • Size

    853KB

  • Sample

    240909-ad7d7ascjk

  • MD5

    8ca352d5b82cee0e6ce559f4377599b3

  • SHA1

    af72cbc988490a02aa9b2822960860703783525e

  • SHA256

    87a7ad1cb40613009e8fff356f7afa4b56703d51923b0ba5c8855b3737adf7e4

  • SHA512

    173118ea1931db3707acb7dfc550984c48d45bbffcd38f7241d92e745ac9b8b38d9e2735aaca06a69b672df4d6c7c518b75ddb81f2b5f430b3f0e41c7d66289c

  • SSDEEP

    24576:6dcSu7nJ1DVBEdbWoHk7gGpTbSpNTNTyxrEH7s:kuINE7gKTbGTyz

Malware Config

Targets

    • Target

      87a7ad1cb40613009e8fff356f7afa4b56703d51923b0ba5c8855b3737adf7e4

    • Size

      853KB

    • MD5

      8ca352d5b82cee0e6ce559f4377599b3

    • SHA1

      af72cbc988490a02aa9b2822960860703783525e

    • SHA256

      87a7ad1cb40613009e8fff356f7afa4b56703d51923b0ba5c8855b3737adf7e4

    • SHA512

      173118ea1931db3707acb7dfc550984c48d45bbffcd38f7241d92e745ac9b8b38d9e2735aaca06a69b672df4d6c7c518b75ddb81f2b5f430b3f0e41c7d66289c

    • SSDEEP

      24576:6dcSu7nJ1DVBEdbWoHk7gGpTbSpNTNTyxrEH7s:kuINE7gKTbGTyz

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

    • Detects Floxif payload

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks