General

  • Target

    012379a929a000ab7cba0d271ad5285efd1d260b8ec0dafbb8676174409412a8N.exe

  • Size

    7.2MB

  • Sample

    241120-a1svbawnhv

  • MD5

    0f1b6b6b1c5ea052c93547a5418124e0

  • SHA1

    936d489e59e506f58d619013c7ef5e38179d7009

  • SHA256

    012379a929a000ab7cba0d271ad5285efd1d260b8ec0dafbb8676174409412a8

  • SHA512

    44796fb373973bc62b4ac880cec146e015a9720fbf24099f555ca64772a03f100ca39e0bee4bda06911d0531074c57ca78a888a562920df4c2b3590a79d3cc0c

  • SSDEEP

    98304:ai4QCiXGmfQHZM+npjojQzBWtpmZbLkiPUc0F7IZSr1da7b+sJ3+PJfKV:mQbdAZnnpjYcBa0McFOfa7b+M3qJf2

Malware Config

Targets

    • Target

      012379a929a000ab7cba0d271ad5285efd1d260b8ec0dafbb8676174409412a8N.exe

    • Size

      7.2MB

    • MD5

      0f1b6b6b1c5ea052c93547a5418124e0

    • SHA1

      936d489e59e506f58d619013c7ef5e38179d7009

    • SHA256

      012379a929a000ab7cba0d271ad5285efd1d260b8ec0dafbb8676174409412a8

    • SHA512

      44796fb373973bc62b4ac880cec146e015a9720fbf24099f555ca64772a03f100ca39e0bee4bda06911d0531074c57ca78a888a562920df4c2b3590a79d3cc0c

    • SSDEEP

      98304:ai4QCiXGmfQHZM+npjojQzBWtpmZbLkiPUc0F7IZSr1da7b+sJ3+PJfKV:mQbdAZnnpjYcBa0McFOfa7b+M3qJf2

    • Floxif family

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

    • Detects Floxif payload

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks