General

  • Target

    160d58fb19e7bc382ef93320e50813a3c2ee2658c5c17a9947e8b024f8cf6344

  • Size

    277KB

  • Sample

    240913-sf1zasvclj

  • MD5

    893090c6fc4fb6c9f4fe96c5c0fc8d88

  • SHA1

    eeaa6264425b670cb639070220236393ee0a89e2

  • SHA256

    160d58fb19e7bc382ef93320e50813a3c2ee2658c5c17a9947e8b024f8cf6344

  • SHA512

    48215ed9ea22a9c1efa9a9c4068e32de061528949c16190121fe4ada02ac601a13afe69748f9787aa421f0114782ec0013fe19cc81ff32575890f9b5fb891229

  • SSDEEP

    3072:vHrfzYPc6X/YMW4l/DReos0gXfJwMuoB+UKrRiEOB9dXCQT1X/MK0dk5xMBQLJyy:AAql/DRfkxwM7B+mCGBV+UdvrEFp7hKj

Malware Config

Targets

    • Target

      160d58fb19e7bc382ef93320e50813a3c2ee2658c5c17a9947e8b024f8cf6344

    • Size

      277KB

    • MD5

      893090c6fc4fb6c9f4fe96c5c0fc8d88

    • SHA1

      eeaa6264425b670cb639070220236393ee0a89e2

    • SHA256

      160d58fb19e7bc382ef93320e50813a3c2ee2658c5c17a9947e8b024f8cf6344

    • SHA512

      48215ed9ea22a9c1efa9a9c4068e32de061528949c16190121fe4ada02ac601a13afe69748f9787aa421f0114782ec0013fe19cc81ff32575890f9b5fb891229

    • SSDEEP

      3072:vHrfzYPc6X/YMW4l/DReos0gXfJwMuoB+UKrRiEOB9dXCQT1X/MK0dk5xMBQLJyy:AAql/DRfkxwM7B+mCGBV+UdvrEFp7hKj

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

    • Detects Floxif payload

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks