Overview

overview

10

Static

static

3

23b48bd2af...0N.exe

windows7-x64

10

23b48bd2af...0N.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    23b48bd2afa0ebe976f45b58cec84de0N.exe

  • Size

    166KB

  • Sample

    240723-3zdyzszaka

  • MD5

    23b48bd2afa0ebe976f45b58cec84de0

  • SHA1

    10216c70fee9af1f0a80ed24e7dc63de0531cc80

  • SHA256

    cde7296c7cdfbfd7a3b426b4a9bd4473bacb12173fdbf02444760eed0540d7a9

  • SHA512

    7e77e80ccdfa5cb9fffb03cba574997208c619b913851fe2fe720ccd0af290d224240bb3cc04985d2053cc147a69b5677ff005195b08688609a482acbbfa00f5

  • SSDEEP

    3072:lgGQxuVtebkTlLx2/E2lQBV+UdE+rECWp7hKBsC9TV:+GQ2tebkTlJBV+UdvrEFp7hKGCf

Score
10/10
floxifbackdoordiscoverytrojanupx

Malware Config

Targets

    • Target

      23b48bd2afa0ebe976f45b58cec84de0N.exe

    • Size

      166KB

    • MD5

      23b48bd2afa0ebe976f45b58cec84de0

    • SHA1

      10216c70fee9af1f0a80ed24e7dc63de0531cc80

    • SHA256

      cde7296c7cdfbfd7a3b426b4a9bd4473bacb12173fdbf02444760eed0540d7a9

    • SHA512

      7e77e80ccdfa5cb9fffb03cba574997208c619b913851fe2fe720ccd0af290d224240bb3cc04985d2053cc147a69b5677ff005195b08688609a482acbbfa00f5

    • SSDEEP

      3072:lgGQxuVtebkTlLx2/E2lQBV+UdE+rECWp7hKBsC9TV:+GQ2tebkTlJBV+UdvrEFp7hKGCf

    Score
    10/10
    floxifbackdoordiscoverytrojanupx

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

      backdoortrojanfloxif

    • Detects Floxif payload

      backdoor

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks