General

  • Target

    d1cc14a236e42c02c457e53b39a5fceb98fe05b3db6e181a905bbfc2bf2669a9

  • Size

    286KB

  • Sample

    240910-qwnmssxfkf

  • MD5

    720d07973813e101d3b959b24cbba4c3

  • SHA1

    bde55d0386dd83ee769bdbc8a5648855fc2989a2

  • SHA256

    d1cc14a236e42c02c457e53b39a5fceb98fe05b3db6e181a905bbfc2bf2669a9

  • SHA512

    58e8a6da62b131f336333b12de571afbab0057674d8e1c47b3719df401e7708c2aafd98a489c37c4b277f7b09b09300b2482c4b6dfe8ad5b532e18b283b3639a

  • SSDEEP

    6144:FzNkhSR/5kHouyXnZhB+R8WHqBV+UdvrEFp7hKza:FzNkhm/JuyXnPB+R8WHqBjvrEH7Ma

Malware Config

Targets

    • Target

      d1cc14a236e42c02c457e53b39a5fceb98fe05b3db6e181a905bbfc2bf2669a9

    • Size

      286KB

    • MD5

      720d07973813e101d3b959b24cbba4c3

    • SHA1

      bde55d0386dd83ee769bdbc8a5648855fc2989a2

    • SHA256

      d1cc14a236e42c02c457e53b39a5fceb98fe05b3db6e181a905bbfc2bf2669a9

    • SHA512

      58e8a6da62b131f336333b12de571afbab0057674d8e1c47b3719df401e7708c2aafd98a489c37c4b277f7b09b09300b2482c4b6dfe8ad5b532e18b283b3639a

    • SSDEEP

      6144:FzNkhSR/5kHouyXnZhB+R8WHqBV+UdvrEFp7hKza:FzNkhm/JuyXnPB+R8WHqBjvrEH7Ma

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

    • Detects Floxif payload

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks