General
-
Target
2024-09-13_99d7ebcf7198ae293c4a192197ef4a32_bkransomware_floxif
-
Size
1.9MB
-
Sample
240913-qf6hnssepd
-
MD5
99d7ebcf7198ae293c4a192197ef4a32
-
SHA1
7ce3594534f79849da62d0b8539ff5ba16ed0ff9
-
SHA256
787eef1f38a013aceba45544c7508b1ecb411ec284b7bdc1070a08b439d44eaa
-
SHA512
bab24a3e7904911388527f4baed56d1f736a22c42049044d086abd5934ae2040f733c03d6abe49bf508d0d278362b2036355c0153b11a7fd933a24eac57cedae
-
SSDEEP
49152:9p3ZoG3UCj5qzWt2skmzb2R3NBHCYcMSCqy+Xyomp6Is:DZP3UCj50WtQwb2R3N9cMSCqy+XX
Static task
static1
Behavioral task
behavioral1
Sample
2024-09-13_99d7ebcf7198ae293c4a192197ef4a32_bkransomware_floxif.exe
Resource
win7-20240729-en
Malware Config
Targets
-
-
Target
2024-09-13_99d7ebcf7198ae293c4a192197ef4a32_bkransomware_floxif
-
Size
1.9MB
-
MD5
99d7ebcf7198ae293c4a192197ef4a32
-
SHA1
7ce3594534f79849da62d0b8539ff5ba16ed0ff9
-
SHA256
787eef1f38a013aceba45544c7508b1ecb411ec284b7bdc1070a08b439d44eaa
-
SHA512
bab24a3e7904911388527f4baed56d1f736a22c42049044d086abd5934ae2040f733c03d6abe49bf508d0d278362b2036355c0153b11a7fd933a24eac57cedae
-
SSDEEP
49152:9p3ZoG3UCj5qzWt2skmzb2R3NBHCYcMSCqy+Xyomp6Is:DZP3UCj50WtQwb2R3N9cMSCqy+XX
-
Detects Floxif payload
-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Loads dropped DLL
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-