General

  • Target

    101f751233c8d1086a88c6fa919867749366ef9ce830cd248665151e11fac385

  • Size

    277KB

  • Sample

    240913-sjrvssvgmd

  • MD5

    e0915cceb48cba566d463ee60046f474

  • SHA1

    f98bceaa24addd67cf947dbb1583e42c6172a727

  • SHA256

    101f751233c8d1086a88c6fa919867749366ef9ce830cd248665151e11fac385

  • SHA512

    2ddfa29fa0f41aa2f12c5d67f71866748ab5c9d6477a8758c54559030bffb7c7f0b2ac5947213c2ff44cb62ce994456415bec9b21d3b1eff3d9f2f5155897105

  • SSDEEP

    6144:Zgl/DRfkTC3dM7B+mCGBV+UdvrEFp7hK8U:ZglbRfky6B+mCGBjvrEH7A

Malware Config

Targets

    • Target

      101f751233c8d1086a88c6fa919867749366ef9ce830cd248665151e11fac385

    • Size

      277KB

    • MD5

      e0915cceb48cba566d463ee60046f474

    • SHA1

      f98bceaa24addd67cf947dbb1583e42c6172a727

    • SHA256

      101f751233c8d1086a88c6fa919867749366ef9ce830cd248665151e11fac385

    • SHA512

      2ddfa29fa0f41aa2f12c5d67f71866748ab5c9d6477a8758c54559030bffb7c7f0b2ac5947213c2ff44cb62ce994456415bec9b21d3b1eff3d9f2f5155897105

    • SSDEEP

      6144:Zgl/DRfkTC3dM7B+mCGBV+UdvrEFp7hK8U:ZglbRfky6B+mCGBjvrEH7A

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

    • Detects Floxif payload

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks