General
-
Target
4429a1535dd2ed4cc4579635d74eaa7427be7b5c590096a1beca60f733126089
-
Size
277KB
-
Sample
250126-jmdb5sxmhr
-
MD5
25cfd19cce5ff58b7e6f359d84448bbe
-
SHA1
45caaaa19a9cf428e6466b47d50086f1b20241da
-
SHA256
4429a1535dd2ed4cc4579635d74eaa7427be7b5c590096a1beca60f733126089
-
SHA512
2794298a2952e946905d355718e281cdc3135776d3d236bdea2533c21b8368f20a01abdd85bbc1cf985ec26c6c8555103d3876551b25ad229c2488bc49ea2310
-
SSDEEP
6144:Pzl/DRfkTC3dM7B+mCDVBV+UdvrEFp7hKB0:PzlbRfky6B+mCpBjvrEH7Z
Malware Config
Targets
-
-
Target
4429a1535dd2ed4cc4579635d74eaa7427be7b5c590096a1beca60f733126089
-
Size
277KB
-
MD5
25cfd19cce5ff58b7e6f359d84448bbe
-
SHA1
45caaaa19a9cf428e6466b47d50086f1b20241da
-
SHA256
4429a1535dd2ed4cc4579635d74eaa7427be7b5c590096a1beca60f733126089
-
SHA512
2794298a2952e946905d355718e281cdc3135776d3d236bdea2533c21b8368f20a01abdd85bbc1cf985ec26c6c8555103d3876551b25ad229c2488bc49ea2310
-
SSDEEP
6144:Pzl/DRfkTC3dM7B+mCDVBV+UdvrEFp7hKB0:PzlbRfky6B+mCpBjvrEH7Z
Score10/10-
Floxif family
-
Floxif, Floodfix
Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.
-
Detects Floxif payload
-
Event Triggered Execution: AppInit DLLs
Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.
-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-