General

  • Target

    45e6c707bde9fd598b0056f40a79000576e439794ebe698307bbccfdd19d2420

  • Size

    809KB

  • Sample

    241109-g7nbqsslfq

  • MD5

    06de67deafea7049f5ddfc1846f2e519

  • SHA1

    4fb0d898b775de2875d39c0b376f4f1b89be12de

  • SHA256

    45e6c707bde9fd598b0056f40a79000576e439794ebe698307bbccfdd19d2420

  • SHA512

    eb914dea05687c539a1c2a6fa8248278c999d2622c67254027746593cd49ce95675c39a3f40165949b41216d747efa0e0dc9592d4a17e494edb184eea693ec58

  • SSDEEP

    24576:sgPH9bbqclBLrSVV8lvmm0NIK0nV61l2erEH7oe:FlbucLSVEmzNIKuVc21

Malware Config

Targets

    • Target

      45e6c707bde9fd598b0056f40a79000576e439794ebe698307bbccfdd19d2420

    • Size

      809KB

    • MD5

      06de67deafea7049f5ddfc1846f2e519

    • SHA1

      4fb0d898b775de2875d39c0b376f4f1b89be12de

    • SHA256

      45e6c707bde9fd598b0056f40a79000576e439794ebe698307bbccfdd19d2420

    • SHA512

      eb914dea05687c539a1c2a6fa8248278c999d2622c67254027746593cd49ce95675c39a3f40165949b41216d747efa0e0dc9592d4a17e494edb184eea693ec58

    • SSDEEP

      24576:sgPH9bbqclBLrSVV8lvmm0NIK0nV61l2erEH7oe:FlbucLSVEmzNIKuVc21

    • Floxif family

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

    • Detects Floxif payload

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks