Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-08-23_372cbe6b2aa16ad7d72632739a51ac23_floxif_mafia

  • Size

    2.5MB

  • Sample

    240823-pl343awenr

  • MD5

    372cbe6b2aa16ad7d72632739a51ac23

  • SHA1

    ead93bc0d026e111532f4b54b1060c0214da18fa

  • SHA256

    b83cd4c4d88b7fa25e1fa445b91ee263e3a0a4bf0101ac093fc7ba3a63164155

  • SHA512

    407f29a84314bbf137dd4e404363ba5cb4914c378b7fe5dc9f1e5765653db7ef750e344a84bc4a66f42e3ed9183c28a9b362ca443674b425eafc018e986c284b

  • SSDEEP

    49152:GuIIK0ofs2hPd2l177BTK2VbDsar1YDj4:GjJfs2hPIl1/L

Malware Config

Targets

    • Target

      2024-08-23_372cbe6b2aa16ad7d72632739a51ac23_floxif_mafia

    • Size

      2.5MB

    • MD5

      372cbe6b2aa16ad7d72632739a51ac23

    • SHA1

      ead93bc0d026e111532f4b54b1060c0214da18fa

    • SHA256

      b83cd4c4d88b7fa25e1fa445b91ee263e3a0a4bf0101ac093fc7ba3a63164155

    • SHA512

      407f29a84314bbf137dd4e404363ba5cb4914c378b7fe5dc9f1e5765653db7ef750e344a84bc4a66f42e3ed9183c28a9b362ca443674b425eafc018e986c284b

    • SSDEEP

      49152:GuIIK0ofs2hPd2l177BTK2VbDsar1YDj4:GjJfs2hPIl1/L

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

    • Detects Floxif payload

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks