General

  • Target

    ef981e994815fc28dc48dc595e23e1595d8c8397b87688c5e79c6a180dd7858a

  • Size

    170KB

  • Sample

    241210-abma8swnav

  • MD5

    cdba3f774302a1c60ca8a6626dd1abb9

  • SHA1

    59be92c48b7a4e11032807aa66434da201c44373

  • SHA256

    ef981e994815fc28dc48dc595e23e1595d8c8397b87688c5e79c6a180dd7858a

  • SHA512

    0254c6b0a428e6286b3261c6ad36959e9d66aa2b3b6d1ea6028bb4dd19a1da125b662da9687c16b012c1fdc672c59db0dec760b02e5a6b3c7aa7733650519e99

  • SSDEEP

    3072:Edue2bXjg1fDf+bpEngyKMxeqWxgTduLxg4ssQvVqRlkM4OAD/KLznBuB2JA2Bj3:Edu0xMxgTQm9sQvMRlkM4RD/qzMfUPzP

Malware Config

Targets

    • Target

      ef981e994815fc28dc48dc595e23e1595d8c8397b87688c5e79c6a180dd7858a

    • Size

      170KB

    • MD5

      cdba3f774302a1c60ca8a6626dd1abb9

    • SHA1

      59be92c48b7a4e11032807aa66434da201c44373

    • SHA256

      ef981e994815fc28dc48dc595e23e1595d8c8397b87688c5e79c6a180dd7858a

    • SHA512

      0254c6b0a428e6286b3261c6ad36959e9d66aa2b3b6d1ea6028bb4dd19a1da125b662da9687c16b012c1fdc672c59db0dec760b02e5a6b3c7aa7733650519e99

    • SSDEEP

      3072:Edue2bXjg1fDf+bpEngyKMxeqWxgTduLxg4ssQvVqRlkM4OAD/KLznBuB2JA2Bj3:Edu0xMxgTQm9sQvMRlkM4RD/qzMfUPzP

    • Floxif family

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

    • Detects Floxif payload

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • Network Service Discovery

      Attempt to gather information on host's network.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.