General

  • Target

    6de311cbcf9892d1ddd580aa4393256584b30cf5641e1b9ef1ff4e66ac6c85a6

  • Size

    168KB

  • Sample

    240916-14wy9asenk

  • MD5

    717a0373707360abe8d42651e6ed4330

  • SHA1

    4bf5bd45fcccc3a58ae5ef631984beb22caae5cc

  • SHA256

    6de311cbcf9892d1ddd580aa4393256584b30cf5641e1b9ef1ff4e66ac6c85a6

  • SHA512

    6a4bf66e19005c8cc7b7a438163969157a9c98fc8ed8f56c1fc0453d437584c7ef933d5d48f8a0b0aaab0fbbb53f471c42cfea0d820793ec64c5f225623bd200

  • SSDEEP

    3072:qu5xGpZ6qbpNdTBffQXE9j1pRq2lQBV+UdE+rECWp7hKr5po:fwp06pTTBXQXsj2BV+UdvrEFp7hKrE

Malware Config

Targets

    • Target

      6de311cbcf9892d1ddd580aa4393256584b30cf5641e1b9ef1ff4e66ac6c85a6

    • Size

      168KB

    • MD5

      717a0373707360abe8d42651e6ed4330

    • SHA1

      4bf5bd45fcccc3a58ae5ef631984beb22caae5cc

    • SHA256

      6de311cbcf9892d1ddd580aa4393256584b30cf5641e1b9ef1ff4e66ac6c85a6

    • SHA512

      6a4bf66e19005c8cc7b7a438163969157a9c98fc8ed8f56c1fc0453d437584c7ef933d5d48f8a0b0aaab0fbbb53f471c42cfea0d820793ec64c5f225623bd200

    • SSDEEP

      3072:qu5xGpZ6qbpNdTBffQXE9j1pRq2lQBV+UdE+rECWp7hKr5po:fwp06pTTBXQXsj2BV+UdvrEFp7hKrE

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

    • Detects Floxif payload

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks