General
-
Target
2d24ddfb3efd5d7a260836dbd894ea2894e70269fd3ff3d3d2c49547162f985b
-
Size
1.4MB
-
Sample
250208-zj1w2atrdr
-
MD5
adbb7aba6be0d2351077e37a17d02abf
-
SHA1
9e41b259d33604d69502104eb8eaef8f5de6a18b
-
SHA256
2d24ddfb3efd5d7a260836dbd894ea2894e70269fd3ff3d3d2c49547162f985b
-
SHA512
d53d07d98bdbf44a0cf95c3bac8266e1578ed00c8df594a1c075994716a5038618b1a8ce8383d64da0cb21657f96749e9a1e89d8f31bc313882b20aa305bb177
-
SSDEEP
24576:Y/KzcVkyEq9DRho1jFP8ltPP01Ws7+wFPEl9ix4fpUzoQDt+egElxdqFWVCGCOrl:aKzcCyEq9DRho/ctH01Ws74rA4RUBDH9
Malware Config
Targets
-
-
Target
2d24ddfb3efd5d7a260836dbd894ea2894e70269fd3ff3d3d2c49547162f985b
-
Size
1.4MB
-
MD5
adbb7aba6be0d2351077e37a17d02abf
-
SHA1
9e41b259d33604d69502104eb8eaef8f5de6a18b
-
SHA256
2d24ddfb3efd5d7a260836dbd894ea2894e70269fd3ff3d3d2c49547162f985b
-
SHA512
d53d07d98bdbf44a0cf95c3bac8266e1578ed00c8df594a1c075994716a5038618b1a8ce8383d64da0cb21657f96749e9a1e89d8f31bc313882b20aa305bb177
-
SSDEEP
24576:Y/KzcVkyEq9DRho1jFP8ltPP01Ws7+wFPEl9ix4fpUzoQDt+egElxdqFWVCGCOrl:aKzcCyEq9DRho/ctH01Ws74rA4RUBDH9
Score10/10-
Floxif family
-
Floxif, Floodfix
Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.
-
Detects Floxif payload
-
Downloads MZ/PE file
-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Loads dropped DLL
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-