FloodFix
FloodFix
FloodFix2
FloodFix2
crc32
crc32
Behavioral task
behavioral1
Sample
44f1f0bce42f7ccc61f9f682d51c2325de46cc3a1e706e118431ca1c2b2f8e56.dll
Resource
win7-20240903-en
Target
44f1f0bce42f7ccc61f9f682d51c2325de46cc3a1e706e118431ca1c2b2f8e56
Size
76KB
MD5
4f5af199429febfeaa9930b19fe55a4e
SHA1
7b0c6db89660aef55c77cd6165969ff0cba94896
SHA256
44f1f0bce42f7ccc61f9f682d51c2325de46cc3a1e706e118431ca1c2b2f8e56
SHA512
02714c339c754d38d9a89c2e0a9cbb57f5aab5da6e1773acb29a132bab6ca65d8800221170cf62f3e9180944e5c0d06d094c281043ff24be954a9d24a0bd4b9b
SSDEEP
1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZYG73:c8y93KQjy7G55riF1cMo03W+
Processes:
| resource | yara_rule |
|---|---|
| sample | floxif |
Detects file using ACProtect software.
Processes:
| resource | yara_rule |
|---|---|
| sample | acprotect |
Processes:
| resource | yara_rule |
|---|---|
| sample | upx |
Checks for missing Authenticode signature.
Processes:
| resource |
|---|
| 44f1f0bce42f7ccc61f9f682d51c2325de46cc3a1e706e118431ca1c2b2f8e56 |
| unpack001/out.upx |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
FloodFix
FloodFix
FloodFix2
FloodFix2
crc32
crc32
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ