General

  • Target

    7147116bd5a5c56747cbced8d50ea6a2f678dcc6b20f07abce4e4e2aa871f11d

  • Size

    278KB

  • Sample

    241109-g8s9daslgm

  • MD5

    d31b7e1d95697132c08dbb86f021175d

  • SHA1

    b5a1229d9e08904c256acb4892ae6903408efd00

  • SHA256

    7147116bd5a5c56747cbced8d50ea6a2f678dcc6b20f07abce4e4e2aa871f11d

  • SHA512

    e6c0544f1c0aef37b6d0bf0b8ff7555fe927f9181d179834458d9e9d8c17b1e80a07b4cfc04365c21d25c62efaed19fc9ed8985da9dceed81cd37c442e1abb05

  • SSDEEP

    6144:mAzl/D10TC3dM7B+GCuBV+UdvrEFp7hKrGO:mAzlb10y6B+GCuBjvrEH7oGO

Malware Config

Targets

    • Target

      7147116bd5a5c56747cbced8d50ea6a2f678dcc6b20f07abce4e4e2aa871f11d

    • Size

      278KB

    • MD5

      d31b7e1d95697132c08dbb86f021175d

    • SHA1

      b5a1229d9e08904c256acb4892ae6903408efd00

    • SHA256

      7147116bd5a5c56747cbced8d50ea6a2f678dcc6b20f07abce4e4e2aa871f11d

    • SHA512

      e6c0544f1c0aef37b6d0bf0b8ff7555fe927f9181d179834458d9e9d8c17b1e80a07b4cfc04365c21d25c62efaed19fc9ed8985da9dceed81cd37c442e1abb05

    • SSDEEP

      6144:mAzl/D10TC3dM7B+GCuBV+UdvrEFp7hKrGO:mAzlb10y6B+GCuBjvrEH7oGO

    • Floxif family

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

    • Detects Floxif payload

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks