General
-
Target
562f303d04decb7108c2f7f3ab4dbf3e0967ef1a62c0b27ebd830b6ef4b78dec
-
Size
811KB
-
Sample
241210-z6embavjfj
-
MD5
faa2dd81ec199fa1125b54607e5b058e
-
SHA1
33e87afd11dd750f143cd819769f8ce33f1f7f98
-
SHA256
562f303d04decb7108c2f7f3ab4dbf3e0967ef1a62c0b27ebd830b6ef4b78dec
-
SHA512
ec1259965b47801e6de9ac700e9aa8480c49c12bd349bb7767f1524e3680f74e7fadc9353b93802af04e76612371623b1c09b5d4783054db271d5c5299de4ff6
-
SSDEEP
24576:2ryVAni8KRsSJ9S39PiqGgHpv5mVrEH7E:6nRRSJo3JAgHpRmv
Malware Config
Targets
-
-
Target
562f303d04decb7108c2f7f3ab4dbf3e0967ef1a62c0b27ebd830b6ef4b78dec
-
Size
811KB
-
MD5
faa2dd81ec199fa1125b54607e5b058e
-
SHA1
33e87afd11dd750f143cd819769f8ce33f1f7f98
-
SHA256
562f303d04decb7108c2f7f3ab4dbf3e0967ef1a62c0b27ebd830b6ef4b78dec
-
SHA512
ec1259965b47801e6de9ac700e9aa8480c49c12bd349bb7767f1524e3680f74e7fadc9353b93802af04e76612371623b1c09b5d4783054db271d5c5299de4ff6
-
SSDEEP
24576:2ryVAni8KRsSJ9S39PiqGgHpv5mVrEH7E:6nRRSJo3JAgHpRmv
Score10/10-
Floxif family
-
Floxif, Floodfix
Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.
-
Detects Floxif payload
-
Event Triggered Execution: AppInit DLLs
Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.
-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-