General

  • Target

    a2bbef45c1c6485a45c5c1953f4b97557aa00ca9e4eba6abce7fa5f2c9eeb8b9

  • Size

    76KB

  • MD5

    4b2da541bbcda92f47e9f4ec8f54797c

  • SHA1

    1268b4e58ac7be3bbf2e95af021bce43fb339261

  • SHA256

    a2bbef45c1c6485a45c5c1953f4b97557aa00ca9e4eba6abce7fa5f2c9eeb8b9

  • SHA512

    786be528dd0b77bdccda9ac90a631d0018d59e9134741d178ed11dcb98a1ff4d579e0026637b6c22bfb406bae47d65d34347a92498e80c6ce8b11e544ab48a5c

  • SSDEEP

    1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7Z68MdfQ:c8y93KQjy7G55riF1cMo03UfQ

Score
10/10

Malware Config

Signatures

  • Detects Floxif payload 1 IoCs
  • Floxif family
  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • a2bbef45c1c6485a45c5c1953f4b97557aa00ca9e4eba6abce7fa5f2c9eeb8b9
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections