General

  • Target

    5c03c4b0b00a72ed76a57a6dba22f0ddc08b4aa16e835c67aaf42e185c3e0977N

  • Size

    150KB

  • Sample

    241110-nvst1swcrj

  • MD5

    4165101cdfff7bd0695b65421f381bd0

  • SHA1

    9ae8f473653f2e96c3eca2395320897bc94d8273

  • SHA256

    5c03c4b0b00a72ed76a57a6dba22f0ddc08b4aa16e835c67aaf42e185c3e0977

  • SHA512

    ec7bf0b6ea496cf26e8de95da0e8375c33355feef3fc21c5df9d066bb2ac5ec12bbc0c480b9f96489a00f0435a2f248ca298bf9e56b2c7a5826ca5ee752c6431

  • SSDEEP

    3072:KHHZMRNjvPcOiH5ecbCKnN22lQBV+UdE+rECWp7hKrs8I:TbPjoecbC7BV+UdvrEFp7hKI/

Malware Config

Targets

    • Target

      5c03c4b0b00a72ed76a57a6dba22f0ddc08b4aa16e835c67aaf42e185c3e0977N

    • Size

      150KB

    • MD5

      4165101cdfff7bd0695b65421f381bd0

    • SHA1

      9ae8f473653f2e96c3eca2395320897bc94d8273

    • SHA256

      5c03c4b0b00a72ed76a57a6dba22f0ddc08b4aa16e835c67aaf42e185c3e0977

    • SHA512

      ec7bf0b6ea496cf26e8de95da0e8375c33355feef3fc21c5df9d066bb2ac5ec12bbc0c480b9f96489a00f0435a2f248ca298bf9e56b2c7a5826ca5ee752c6431

    • SSDEEP

      3072:KHHZMRNjvPcOiH5ecbCKnN22lQBV+UdE+rECWp7hKrs8I:TbPjoecbC7BV+UdvrEFp7hKI/

    • Floxif family

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

    • Detects Floxif payload

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks