General

  • Target

    6ec2b44f718b13b99ce1c3c84f9bab0fff0ff7d11b1c5c33b56724454f58cdccN

  • Size

    76KB

  • MD5

    8d3b64001982f0284b2b2c668c2e3fa0

  • SHA1

    d52d86119824ef233c25af5cc5153bdb46490f79

  • SHA256

    6ec2b44f718b13b99ce1c3c84f9bab0fff0ff7d11b1c5c33b56724454f58cdcc

  • SHA512

    113cace4c71fd6ca12960b582fd4f5a603452bc6cbc68e3547f2e6256a883d625057b7f8caa6713e529d3fbb600c67110d5e4a9b53230da0f77334dc0187227a

  • SSDEEP

    1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7ZxAnf:c8y93KQjy7G55riF1cMo03jAnf

Score
10/10

Malware Config

Signatures

  • Detects Floxif payload 1 IoCs
  • Floxif family
  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 6ec2b44f718b13b99ce1c3c84f9bab0fff0ff7d11b1c5c33b56724454f58cdccN
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections