FloodFix
FloodFix
FloodFix2
FloodFix2
crc32
crc32
Windows 7 will be removed from tria.ge on 2025-03-31
Behavioral task
behavioral1
Sample
bb2fea1c7430953077dddf0d67273b029fe37038f2ad81ab7c129fdd13fd302dN.dll
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
bb2fea1c7430953077dddf0d67273b029fe37038f2ad81ab7c129fdd13fd302dN.dll
Resource
win10v2004-20241007-en
Target
bb2fea1c7430953077dddf0d67273b029fe37038f2ad81ab7c129fdd13fd302dN.exe
Size
80KB
MD5
daf8181b5d3a5422874d8807e3fac980
SHA1
acbe13dd414d717e888e4ecd131178cefc3f815e
SHA256
bb2fea1c7430953077dddf0d67273b029fe37038f2ad81ab7c129fdd13fd302d
SHA512
217d9a4ba0b1fe685c35cd0709d8330182b1640f7bd04eae74ae5e63df201dbccd8f2f47172c547af12fb46558d01b7a07e109dde362caa46425aebb6bada845
SSDEEP
1536:5POOhfbOjovgdVydUgoNrwBZXGDaZ1QIxrfItMgR7ZaO+fGxHZPEvMz:5dbwovEVyqgoZmZXWfIdQdRaefPFz
resource | yara_rule |
---|---|
sample | floxif |
Detects file using ACProtect software.
resource | yara_rule |
---|---|
sample | acprotect |
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
bb2fea1c7430953077dddf0d67273b029fe37038f2ad81ab7c129fdd13fd302dN.exe |
unpack001/out.upx |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
FloodFix
FloodFix
FloodFix2
FloodFix2
crc32
crc32
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ