floxif | d4c844849691525095bc716d036ca4c7fa7ba07c15de74bc67cf9e1d8e10e5c1 | Triage

Submit
Reports

Overview

overview

Static

static

1

d4c8448496...c1.exe

windows7-x64

d4c8448496...c1.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

Target

d4c844849691525095bc716d036ca4c7fa7ba07c15de74bc67cf9e1d8e10e5c1
Size

277KB
Sample

240908-1ap9lsydnd
MD5

5e178b8a3df5ae0f73dc4424eccd45b8
SHA1

c42055ed15ddc4b5e18c6b2377afb8e687d78213
SHA256

d4c844849691525095bc716d036ca4c7fa7ba07c15de74bc67cf9e1d8e10e5c1
SHA512

dcda73da4e05aec6ed6677cbf1851526354f10eb61bb31fa0100d55904ca5f2424b06594a8a945d8b3f450d97155001b60d5179b0bb8a1f9541c51a34729c7ae
SSDEEP

3072:vHrfzYPc6X/YSh4eos0gXf+EvC6C36eCWdMuoB+UKrRiEOB9dXCQT1X/MK0dk5xS:AAm4fkTC3dM7B+mCGBV+UdvrEFp7hKJ2

Score

10^/10

floxif backdoor discovery trojan upx

Static task

static1

Behavioral task

behavioral1

Sample

d4c844849691525095bc716d036ca4c7fa7ba07c15de74bc67cf9e1d8e10e5c1.exe

Resource

win7-20240903-en

floxif backdoor discovery trojan upx

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

d4c844849691525095bc716d036ca4c7fa7ba07c15de74bc67cf9e1d8e10e5c1.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

150 seconds

Malware Config

Targets

- Target
  
  d4c844849691525095bc716d036ca4c7fa7ba07c15de74bc67cf9e1d8e10e5c1
- Size
  
  277KB
- MD5
  
  5e178b8a3df5ae0f73dc4424eccd45b8
- SHA1
  
  c42055ed15ddc4b5e18c6b2377afb8e687d78213
- SHA256
  
  d4c844849691525095bc716d036ca4c7fa7ba07c15de74bc67cf9e1d8e10e5c1
- SHA512
  
  dcda73da4e05aec6ed6677cbf1851526354f10eb61bb31fa0100d55904ca5f2424b06594a8a945d8b3f450d97155001b60d5179b0bb8a1f9541c51a34729c7ae
- SSDEEP
  
  3072:vHrfzYPc6X/YSh4eos0gXf+EvC6C36eCWdMuoB+UKrRiEOB9dXCQT1X/MK0dk5xS:AAm4fkTC3dM7B+mCGBV+UdvrEFp7hKJ2
Score

10^/10

floxif backdoor discovery trojan upx
- Floxif, Floodfix
  Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.
  backdoor trojan floxif
- Detects Floxif payload
  backdoor
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

floxifbackdoordiscoverytrojanupx

behavioral2

© 2018-2025

Terms | Privacy