floxif | 514465e23be0dcb116a3495128b83cc95cb0ff0eb5e9bfd23bd7963ca6919346 | Triage

Submit
Reports

Overview

overview

Static

static

1

514465e23b...46.dll

windows7-x64

514465e23b...46.dll

windows10-2004-x64

Sharing

General

Target

514465e23be0dcb116a3495128b83cc95cb0ff0eb5e9bfd23bd7963ca6919346
Size

384KB
Sample

240828-1x3s8azhlr
MD5

7079e02cd3b08aebb52e821103a8fcc5
SHA1

a043a794363e1e5d19dcefcfa1db14bfe9e768e5
SHA256

514465e23be0dcb116a3495128b83cc95cb0ff0eb5e9bfd23bd7963ca6919346
SHA512

1fe08ed98617c74ccb6d3bf5328db5394d18cbe6a36a95a71108ccfcd8c6527c8762c2b55144b0e158b2c783b403f4bc4755f90b6648598aea7111e0b20ff747
SSDEEP

6144:aj0fYJ83TcIe9dIOeyCcutrgtRDzKUEiFAKtDYFXABV+UdvrEFp7hKl:ajsY6oX9dIO6cErmKUZSliBjvrEH7i

Score

10^/10

floxif backdoor discovery trojan upx

Static task

static1

Behavioral task

behavioral1

Sample

514465e23be0dcb116a3495128b83cc95cb0ff0eb5e9bfd23bd7963ca6919346.dll

Resource

win7-20240729-en

floxif backdoor discovery trojan upx

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

514465e23be0dcb116a3495128b83cc95cb0ff0eb5e9bfd23bd7963ca6919346.dll

Resource

win10v2004-20240802-en

floxif backdoor discovery trojan upx

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  514465e23be0dcb116a3495128b83cc95cb0ff0eb5e9bfd23bd7963ca6919346
- Size
  
  384KB
- MD5
  
  7079e02cd3b08aebb52e821103a8fcc5
- SHA1
  
  a043a794363e1e5d19dcefcfa1db14bfe9e768e5
- SHA256
  
  514465e23be0dcb116a3495128b83cc95cb0ff0eb5e9bfd23bd7963ca6919346
- SHA512
  
  1fe08ed98617c74ccb6d3bf5328db5394d18cbe6a36a95a71108ccfcd8c6527c8762c2b55144b0e158b2c783b403f4bc4755f90b6648598aea7111e0b20ff747
- SSDEEP
  
  6144:aj0fYJ83TcIe9dIOeyCcutrgtRDzKUEiFAKtDYFXABV+UdvrEFp7hKl:ajsY6oX9dIO6cErmKUZSliBjvrEH7i
Score

10^/10

floxif backdoor discovery trojan upx
- Floxif, Floodfix
  Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.
  backdoor trojan floxif
- Detects Floxif payload
  backdoor
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

floxifbackdoordiscoverytrojanupx

behavioral2

floxifbackdoordiscoverytrojanupx

© 2018-2025

Terms | Privacy