General

  • Target

    83c65a6a6b119cc65589e492827f78ea8b2601a8dbde9ba04ae6aec153a5a4a6

  • Size

    277KB

  • Sample

    240910-g7d33azflj

  • MD5

    72a599737fdf9456d56c558d5ad81829

  • SHA1

    ed66d2c26a8db378075bf5eeefae0ab4a219d56b

  • SHA256

    83c65a6a6b119cc65589e492827f78ea8b2601a8dbde9ba04ae6aec153a5a4a6

  • SHA512

    48d75dd332f9a006faece01092de6c1ad028613acd53db03a93fd59e4e1442f2bf82c6f22d126f4d396b631c5b14b337bfa14b9c18d6c2498f06c647cb36f3b8

  • SSDEEP

    6144:EnAAl/DRfkTC3dM7B+mCGBV+UdvrEFp7hK8:EnAAlbRfky6B+mCGBjvrEH73

Malware Config

Targets

    • Target

      83c65a6a6b119cc65589e492827f78ea8b2601a8dbde9ba04ae6aec153a5a4a6

    • Size

      277KB

    • MD5

      72a599737fdf9456d56c558d5ad81829

    • SHA1

      ed66d2c26a8db378075bf5eeefae0ab4a219d56b

    • SHA256

      83c65a6a6b119cc65589e492827f78ea8b2601a8dbde9ba04ae6aec153a5a4a6

    • SHA512

      48d75dd332f9a006faece01092de6c1ad028613acd53db03a93fd59e4e1442f2bf82c6f22d126f4d396b631c5b14b337bfa14b9c18d6c2498f06c647cb36f3b8

    • SSDEEP

      6144:EnAAl/DRfkTC3dM7B+mCGBV+UdvrEFp7hK8:EnAAlbRfky6B+mCGBjvrEH73

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

    • Detects Floxif payload

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks