General

  • Target

    cd5d2cb757b1806e4ca37af864aa69fe40113d76833299afd3af9638c01abbe6

  • Size

    277KB

  • Sample

    240913-n6345a1anf

  • MD5

    1a4fc9a24946e96d42dd930a4919671c

  • SHA1

    a4d6514ac654fab336f0306125111d7b3449d3eb

  • SHA256

    cd5d2cb757b1806e4ca37af864aa69fe40113d76833299afd3af9638c01abbe6

  • SHA512

    7be81a85e79ca31e2d919c01e86e9067b7b1820024eec6dadb994f80c51275e87c1520650346356addc527ff41ed9523e9573b5728712631a466328a95351d09

  • SSDEEP

    6144:AAFl/DRfkHaC3dM7B+mCGBV+UdvrEFp7hKGK:AAFlbRfkHX6B+mCGBjvrEH7HK

Malware Config

Targets

    • Target

      cd5d2cb757b1806e4ca37af864aa69fe40113d76833299afd3af9638c01abbe6

    • Size

      277KB

    • MD5

      1a4fc9a24946e96d42dd930a4919671c

    • SHA1

      a4d6514ac654fab336f0306125111d7b3449d3eb

    • SHA256

      cd5d2cb757b1806e4ca37af864aa69fe40113d76833299afd3af9638c01abbe6

    • SHA512

      7be81a85e79ca31e2d919c01e86e9067b7b1820024eec6dadb994f80c51275e87c1520650346356addc527ff41ed9523e9573b5728712631a466328a95351d09

    • SSDEEP

      6144:AAFl/DRfkHaC3dM7B+mCGBV+UdvrEFp7hKGK:AAFlbRfkHX6B+mCGBjvrEH7HK

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

    • Detects Floxif payload

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks