General

  • Target

    deab2d83e43ce8f03611d9d370e0167e2ee1940d03aa4ab6ca8fd05774b7d252

  • Size

    277KB

  • Sample

    240910-g7d33azflk

  • MD5

    35e8714888d4ac0d59ecb64d92050a66

  • SHA1

    e8eb08c27bc657e1f0b2ed29f98752c546684516

  • SHA256

    deab2d83e43ce8f03611d9d370e0167e2ee1940d03aa4ab6ca8fd05774b7d252

  • SHA512

    2c6d61cd5af63ade11e850e5d79ffe46fa2b441c1f11ad532fac2fb3a615c3f62bc29c9f997db0bf7c9b011ebda0afb4f7169b57e120b774e95f6f66e892b503

  • SSDEEP

    6144:AARl/DLeTC3dM7B+mCGBV+UdvrEFp7hKcG0:AARlbLey6B+mCGBjvrEH7nG0

Malware Config

Targets

    • Target

      deab2d83e43ce8f03611d9d370e0167e2ee1940d03aa4ab6ca8fd05774b7d252

    • Size

      277KB

    • MD5

      35e8714888d4ac0d59ecb64d92050a66

    • SHA1

      e8eb08c27bc657e1f0b2ed29f98752c546684516

    • SHA256

      deab2d83e43ce8f03611d9d370e0167e2ee1940d03aa4ab6ca8fd05774b7d252

    • SHA512

      2c6d61cd5af63ade11e850e5d79ffe46fa2b441c1f11ad532fac2fb3a615c3f62bc29c9f997db0bf7c9b011ebda0afb4f7169b57e120b774e95f6f66e892b503

    • SSDEEP

      6144:AARl/DLeTC3dM7B+mCGBV+UdvrEFp7hKcG0:AARlbLey6B+mCGBjvrEH7nG0

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

    • Detects Floxif payload

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks