General
-
Target
cee4e31bbcd33cae0f12cb85da7eff77b73aa97022ccc937a0e3d94bb082579bN.exe
-
Size
180KB
-
Sample
250101-xxr5yayqht
-
MD5
a9004105a493b5e7701fa7bb6205b800
-
SHA1
f76eeb12ea007414c63cb3fd5ec880f6e967e463
-
SHA256
cee4e31bbcd33cae0f12cb85da7eff77b73aa97022ccc937a0e3d94bb082579b
-
SHA512
5a91e594584919593df9aee71e532366a69368e21a733f3f6f3c4c8637110769ceeb5a82da78bb854c821158e6c849b4898b2529738988f2efdf7c61fc2a41ac
-
SSDEEP
3072:Qv546d2dI6tWy2lQBV+UdE+rECWp7hKs5N+:Qh46d6BV+UdvrEFp7hKS+
Malware Config
Targets
-
-
Target
cee4e31bbcd33cae0f12cb85da7eff77b73aa97022ccc937a0e3d94bb082579bN.exe
-
Size
180KB
-
MD5
a9004105a493b5e7701fa7bb6205b800
-
SHA1
f76eeb12ea007414c63cb3fd5ec880f6e967e463
-
SHA256
cee4e31bbcd33cae0f12cb85da7eff77b73aa97022ccc937a0e3d94bb082579b
-
SHA512
5a91e594584919593df9aee71e532366a69368e21a733f3f6f3c4c8637110769ceeb5a82da78bb854c821158e6c849b4898b2529738988f2efdf7c61fc2a41ac
-
SSDEEP
3072:Qv546d2dI6tWy2lQBV+UdE+rECWp7hKs5N+:Qh46d6BV+UdvrEFp7hKS+
Score10/10-
Floxif family
-
Floxif, Floodfix
Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.
-
Detects Floxif payload
-
Event Triggered Execution: AppInit DLLs
Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.
-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-