General

  • Target

    2ad4343522d7a5ea98cc80e4df4a9c04cf33df8a6e485871f5715769a08004b1

  • Size

    197KB

  • Sample

    240910-jbkbbatdpb

  • MD5

    7bab86b2f25d1047305600051f616580

  • SHA1

    008501dd416e699a4b189f7e8a02f7b16109f01e

  • SHA256

    2ad4343522d7a5ea98cc80e4df4a9c04cf33df8a6e485871f5715769a08004b1

  • SHA512

    bb3a04755e8f0762e51cce5b6a4b6e251320c965b080c4c0678fdc0bd691e3637e8577880eabd5e6d66a7595713665f073c9df067060bcf95e9e36040a8c678a

  • SSDEEP

    6144:ko7Y+tE5LrNn8QG9mFd0BV+UdvrEFp7hKHx:ko7Y+tMn8VmFd0BjvrEH7W

Malware Config

Targets

    • Target

      2ad4343522d7a5ea98cc80e4df4a9c04cf33df8a6e485871f5715769a08004b1

    • Size

      197KB

    • MD5

      7bab86b2f25d1047305600051f616580

    • SHA1

      008501dd416e699a4b189f7e8a02f7b16109f01e

    • SHA256

      2ad4343522d7a5ea98cc80e4df4a9c04cf33df8a6e485871f5715769a08004b1

    • SHA512

      bb3a04755e8f0762e51cce5b6a4b6e251320c965b080c4c0678fdc0bd691e3637e8577880eabd5e6d66a7595713665f073c9df067060bcf95e9e36040a8c678a

    • SSDEEP

      6144:ko7Y+tE5LrNn8QG9mFd0BV+UdvrEFp7hKHx:ko7Y+tMn8VmFd0BjvrEH7W

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

    • Detects Floxif payload

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks