General
-
Target
dd2761a586a95fcd8ac5e12d0bb434c1cfad746697736867be51fde592214884
-
Size
286KB
-
Sample
250107-hknves1mcn
-
MD5
608d52c87937d72e53e420cc42ea9950
-
SHA1
fe6f29a2cf13ed24d4dd250473de64c0fc97a9fa
-
SHA256
dd2761a586a95fcd8ac5e12d0bb434c1cfad746697736867be51fde592214884
-
SHA512
d0bfac39999321fabee597b07485514a718cc4853864ae379cf70d78fb7acee21d2e250147b9f34b1cff7602387a11145200cd159e4da5a7cf4ca7d8b10e0bf0
-
SSDEEP
6144:aDcSR/5kHouyXnZhB+h8WHlBV+UdvrEFp7hKE:aDcm/JuyXnPB+h8WHlBjvrEH7v
Malware Config
Targets
-
-
Target
dd2761a586a95fcd8ac5e12d0bb434c1cfad746697736867be51fde592214884
-
Size
286KB
-
MD5
608d52c87937d72e53e420cc42ea9950
-
SHA1
fe6f29a2cf13ed24d4dd250473de64c0fc97a9fa
-
SHA256
dd2761a586a95fcd8ac5e12d0bb434c1cfad746697736867be51fde592214884
-
SHA512
d0bfac39999321fabee597b07485514a718cc4853864ae379cf70d78fb7acee21d2e250147b9f34b1cff7602387a11145200cd159e4da5a7cf4ca7d8b10e0bf0
-
SSDEEP
6144:aDcSR/5kHouyXnZhB+h8WHlBV+UdvrEFp7hKE:aDcm/JuyXnPB+h8WHlBjvrEH7v
Score10/10-
Floxif family
-
Floxif, Floodfix
Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.
-
Detects Floxif payload
-
Event Triggered Execution: AppInit DLLs
Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.
-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-