General
-
Target
442470ba9627e80719d8e29ea4ef2342e4b412c5fd2a3be56940071693d5deca
-
Size
452KB
-
Sample
241229-1za6zsxrhw
-
MD5
5e8bb2cdcbf125115a831589e6b06301
-
SHA1
5a659b67138a10e2d903898a14453aa63071f3ce
-
SHA256
442470ba9627e80719d8e29ea4ef2342e4b412c5fd2a3be56940071693d5deca
-
SHA512
6130a53627a6c8866b00d0b384fc529ed38c550e9b5e1b955db70b2d23e844ff34eeeecf9c1102ada7f1d0d395126446abaaac2831c7eca7e62895e681145c20
-
SSDEEP
6144:49dGsVge1ZPmxRTyLxXoQmkjjdElSbrH0ssQvMRlkM4RD/qzMfU0vA:TsVbPcRTydXoQvflUiMRGM4h/qofM
Malware Config
Targets
-
-
Target
442470ba9627e80719d8e29ea4ef2342e4b412c5fd2a3be56940071693d5deca
-
Size
452KB
-
MD5
5e8bb2cdcbf125115a831589e6b06301
-
SHA1
5a659b67138a10e2d903898a14453aa63071f3ce
-
SHA256
442470ba9627e80719d8e29ea4ef2342e4b412c5fd2a3be56940071693d5deca
-
SHA512
6130a53627a6c8866b00d0b384fc529ed38c550e9b5e1b955db70b2d23e844ff34eeeecf9c1102ada7f1d0d395126446abaaac2831c7eca7e62895e681145c20
-
SSDEEP
6144:49dGsVge1ZPmxRTyLxXoQmkjjdElSbrH0ssQvMRlkM4RD/qzMfU0vA:TsVbPcRTydXoQvflUiMRGM4h/qofM
Score10/10-
Floxif family
-
Floxif, Floodfix
Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.
-
Detects Floxif payload
-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Loads dropped DLL
-
Network Service Discovery
Attempt to gather information on host's network.
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-