General

  • Target

    13fa94b7848f37914900719906802cee7584fc792725190c227c83fa67aa156f

  • Size

    234KB

  • Sample

    250102-fqx9yavlcw

  • MD5

    8b117a544f92c0f7bb50756fd116b849

  • SHA1

    c690f1c2e5d42e8464f3271be95b144b7f060393

  • SHA256

    13fa94b7848f37914900719906802cee7584fc792725190c227c83fa67aa156f

  • SHA512

    3dc6e797675e7b9ce2e6ea62d30b5c08ce8b7625d9088cc3acefac239f950fa264741bb902161f0fe9b714ee3e22f1c121c4c424fd947d793e37d17ceb064819

  • SSDEEP

    3072:uwzvOYT+5YPFYB/DvbEvK9aobNI2B+flkL7OjUuxGftPyhdY55s2ZUuyNFhyzzZX:b+iPFkh9H/B+/kBV+UdvrEFp7hKep+

Malware Config

Targets

    • Target

      13fa94b7848f37914900719906802cee7584fc792725190c227c83fa67aa156f

    • Size

      234KB

    • MD5

      8b117a544f92c0f7bb50756fd116b849

    • SHA1

      c690f1c2e5d42e8464f3271be95b144b7f060393

    • SHA256

      13fa94b7848f37914900719906802cee7584fc792725190c227c83fa67aa156f

    • SHA512

      3dc6e797675e7b9ce2e6ea62d30b5c08ce8b7625d9088cc3acefac239f950fa264741bb902161f0fe9b714ee3e22f1c121c4c424fd947d793e37d17ceb064819

    • SSDEEP

      3072:uwzvOYT+5YPFYB/DvbEvK9aobNI2B+flkL7OjUuxGftPyhdY55s2ZUuyNFhyzzZX:b+iPFkh9H/B+/kBV+UdvrEFp7hKep+

    • Floxif family

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

    • Detects Floxif payload

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks