Overview

overview

10

Static

static

1

2024-09-09...ia.exe

windows7-x64

10

2024-09-09...ia.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-09-09_092cda38995e2d211a31dccace662721_floxif_mafia

  • Size

    2.5MB

  • Sample

    240909-pjwbfazdke

  • MD5

    092cda38995e2d211a31dccace662721

  • SHA1

    d7c424feee17ff49ed27ae524a5c8335ae03d53c

  • SHA256

    66140ffb4c7797c9c1ccb983b45a6d5a72584297a02461850ee2685940d4407e

  • SHA512

    58c2e8a6afa01a144792de4782c277a938b823787ad2852cf82529c46668355eb599e1827db7b0b84934d73e380d2b85cb353981d199bb28250e6dfc32540d16

  • SSDEEP

    49152:6uIIK8ofs2hPd2l177BTK2VbDsar1YDjB:6jtfs2hPIl1/C

Score
10/10
floxifbackdoordiscoverytrojanupx

Malware Config

Targets

    • Target

      2024-09-09_092cda38995e2d211a31dccace662721_floxif_mafia

    • Size

      2.5MB

    • MD5

      092cda38995e2d211a31dccace662721

    • SHA1

      d7c424feee17ff49ed27ae524a5c8335ae03d53c

    • SHA256

      66140ffb4c7797c9c1ccb983b45a6d5a72584297a02461850ee2685940d4407e

    • SHA512

      58c2e8a6afa01a144792de4782c277a938b823787ad2852cf82529c46668355eb599e1827db7b0b84934d73e380d2b85cb353981d199bb28250e6dfc32540d16

    • SSDEEP

      49152:6uIIK8ofs2hPd2l177BTK2VbDsar1YDjB:6jtfs2hPIl1/C

    Score
    10/10
    floxifbackdoordiscoverytrojanupx

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

      backdoortrojanfloxif

    • Detects Floxif payload

      backdoor

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks