General

  • Target

    e14031240c05f8743bd1e5db0663d7daed9f6567ca70bfe13cb6b5803cd9e344

  • Size

    310KB

  • Sample

    240909-d8nr4szdql

  • MD5

    9ee8aca539cd09bced9c735ef3949e38

  • SHA1

    d743a1cf6d2d6c7516bfa0f5b1adf1794da441de

  • SHA256

    e14031240c05f8743bd1e5db0663d7daed9f6567ca70bfe13cb6b5803cd9e344

  • SHA512

    10d0e2dc32edbfe308f91f800cebdeb822261111891fb9d87c6e1b5a6c0a32c62d0b174c700cf46dc1918896e2bee0b969b3b9ae8b78d5a05a02649b431470db

  • SSDEEP

    6144:NgmuT6GQfps5ZPRIu4BiFRDbp6kBV+UdvrEFp7hKYb:6N6GapA0h+OkBjvrEH75b

Malware Config

Targets

    • Target

      e14031240c05f8743bd1e5db0663d7daed9f6567ca70bfe13cb6b5803cd9e344

    • Size

      310KB

    • MD5

      9ee8aca539cd09bced9c735ef3949e38

    • SHA1

      d743a1cf6d2d6c7516bfa0f5b1adf1794da441de

    • SHA256

      e14031240c05f8743bd1e5db0663d7daed9f6567ca70bfe13cb6b5803cd9e344

    • SHA512

      10d0e2dc32edbfe308f91f800cebdeb822261111891fb9d87c6e1b5a6c0a32c62d0b174c700cf46dc1918896e2bee0b969b3b9ae8b78d5a05a02649b431470db

    • SSDEEP

      6144:NgmuT6GQfps5ZPRIu4BiFRDbp6kBV+UdvrEFp7hKYb:6N6GapA0h+OkBjvrEH75b

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

    • Detects Floxif payload

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks