FloodFix
FloodFix
FloodFix2
FloodFix2
crc32
crc32
Windows 7 will be removed from tria.ge on 2025-03-31
Behavioral task
behavioral1
Sample
1e104b806c88c88630db48de38e45088c2131be1efde9ccfa87142aae04b78ffN.dll
Resource
win7-20241023-en
Target
1e104b806c88c88630db48de38e45088c2131be1efde9ccfa87142aae04b78ffN.exe
Size
76KB
MD5
46edfa0c977e429e8f9a13057d140f30
SHA1
c0b8ab8a75d63fd2b49c8c7cf5b2cb88da07e9ab
SHA256
1e104b806c88c88630db48de38e45088c2131be1efde9ccfa87142aae04b78ff
SHA512
236c94a08157776311d219ff321c71576b07ad5bd5f3e384737093630ad5d270e2db1c39e96bd6477b8a3442ef3fb0e80e6c64b68e1188e56cd9ce2719915c15
SSDEEP
1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7Zr7Bf0URybK:c8y93KQjy7G55riF1cMo035
resource | yara_rule |
---|---|
sample | floxif |
Detects file using ACProtect software.
resource | yara_rule |
---|---|
sample | acprotect |
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
1e104b806c88c88630db48de38e45088c2131be1efde9ccfa87142aae04b78ffN.exe |
unpack001/out.upx |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
FloodFix
FloodFix
FloodFix2
FloodFix2
crc32
crc32
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ