General

  • Target

    b21a4692deaab31b04b7fb67bb67ddb956353c157b8ffc99c6b2f75cd4ae5983.exe

  • Size

    76KB

  • MD5

    b2518b174ef418b4bac69302614759cb

  • SHA1

    fd179822ad6b5601658185b12608c234f28a961d

  • SHA256

    b21a4692deaab31b04b7fb67bb67ddb956353c157b8ffc99c6b2f75cd4ae5983

  • SHA512

    2c12a8e25452992494d6e92228e6aee4319038a2ec3b4bea202348d2e629b75d26426036f44460209a008c47f1caab40da0c7564eec247fee2c32d1dc18dc9fc

  • SSDEEP

    1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7Zt/j8nw:c8y93KQjy7G55riF1cMo03Z

Score
10/10

Malware Config

Signatures

  • Detects Floxif payload 1 IoCs
  • Floxif family
  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • b21a4692deaab31b04b7fb67bb67ddb956353c157b8ffc99c6b2f75cd4ae5983.exe
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections