General

  • Target

    3beaa78bb8201b872cca96436f1ef706ea0cbc2218a346d777dced46e7b28b20

  • Size

    286KB

  • Sample

    241109-pvlalsvbrd

  • MD5

    993f1d843e51aa4cbc3d858116391521

  • SHA1

    85a12ca992ca5d076090e885d945490ce95b0054

  • SHA256

    3beaa78bb8201b872cca96436f1ef706ea0cbc2218a346d777dced46e7b28b20

  • SHA512

    960ee3b3a701f826ba1f6c2864e812ff057455f43a6d30d3b8c3fde973dcda2bb3a1190591e4a3d9e2f710fee22be0f561564c64a340f591de2fb383551bb5e0

  • SSDEEP

    6144:M7gKNkhSljkHouyXnZhB+R8WHqBV+UdvrEFp7hKuG:M7gKNkhs3uyXnPB+R8WHqBjvrEH73G

Malware Config

Targets

    • Target

      3beaa78bb8201b872cca96436f1ef706ea0cbc2218a346d777dced46e7b28b20

    • Size

      286KB

    • MD5

      993f1d843e51aa4cbc3d858116391521

    • SHA1

      85a12ca992ca5d076090e885d945490ce95b0054

    • SHA256

      3beaa78bb8201b872cca96436f1ef706ea0cbc2218a346d777dced46e7b28b20

    • SHA512

      960ee3b3a701f826ba1f6c2864e812ff057455f43a6d30d3b8c3fde973dcda2bb3a1190591e4a3d9e2f710fee22be0f561564c64a340f591de2fb383551bb5e0

    • SSDEEP

      6144:M7gKNkhSljkHouyXnZhB+R8WHqBV+UdvrEFp7hKuG:M7gKNkhs3uyXnPB+R8WHqBjvrEH73G

    • Floxif family

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

    • Detects Floxif payload

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks