General
-
Target
a08664010426dad2885ab50f3ba310add967775abf9e30426f854cd349ebd2bf
-
Size
811KB
-
Sample
250123-jpzm6a1ner
-
MD5
1a865e521ef0d2d5424b3c05956c77d4
-
SHA1
4e7f3ebfca9ab2dd9d080362e192585f70264fc1
-
SHA256
a08664010426dad2885ab50f3ba310add967775abf9e30426f854cd349ebd2bf
-
SHA512
ce7e44726c1baaaca6a1fa2d2205e74d7c72222016ab11375bd737a998eb890c73a8f2591c712115dc1f8deb43667935111602c07afd05f58858c6e29e87ba0b
-
SSDEEP
12288:CmxsEGerEsTmsb6+T4AhSJgshy/NTJkr7uDBvhGpyZmaFgBjvrEH79wNHOG:CmvGCdTmsr7SJgp/Zqrih4yZmmCrEH7O
Malware Config
Targets
-
-
Target
a08664010426dad2885ab50f3ba310add967775abf9e30426f854cd349ebd2bf
-
Size
811KB
-
MD5
1a865e521ef0d2d5424b3c05956c77d4
-
SHA1
4e7f3ebfca9ab2dd9d080362e192585f70264fc1
-
SHA256
a08664010426dad2885ab50f3ba310add967775abf9e30426f854cd349ebd2bf
-
SHA512
ce7e44726c1baaaca6a1fa2d2205e74d7c72222016ab11375bd737a998eb890c73a8f2591c712115dc1f8deb43667935111602c07afd05f58858c6e29e87ba0b
-
SSDEEP
12288:CmxsEGerEsTmsb6+T4AhSJgshy/NTJkr7uDBvhGpyZmaFgBjvrEH79wNHOG:CmvGCdTmsr7SJgp/Zqrih4yZmmCrEH7O
Score10/10-
Floxif family
-
Floxif, Floodfix
Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.
-
Detects Floxif payload
-
Event Triggered Execution: AppInit DLLs
Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.
-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-