Overview

overview

10

Static

static

1

2024-11-19...ia.exe

windows7-x64

10

2024-11-19...ia.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-11-19_d8850f2c71329af3820c728fe5391525_floxif_mafia

  • Size

    1.8MB

  • Sample

    241119-qx66jaxdlq

  • MD5

    d8850f2c71329af3820c728fe5391525

  • SHA1

    d6107f772abcb64cc3bba639913bfb75104b21c6

  • SHA256

    0748ed71c761d89c898f6acd0719d5cddc72aae70951fa4fccc20d867eaa11ad

  • SHA512

    1d35c2c835c6dfae1828e710520395daef7cbefbd178037e3e55f2c44cad75ba50793359675594ac7afeee8c738eb988f37495ac09ba1f8e72038ed5e8cbeabf

  • SSDEEP

    49152:W5Zp6SIguuBR5+s5ZvDwpPDwHvehhFKT8oBaqBeqyZSERu9WT:W5qSfuuRv0pPEehhFMBpBeq0F

Score
10/10
floxifbackdoordiscoverytrojanupx

Malware Config

Targets

    • Target

      2024-11-19_d8850f2c71329af3820c728fe5391525_floxif_mafia

    • Size

      1.8MB

    • MD5

      d8850f2c71329af3820c728fe5391525

    • SHA1

      d6107f772abcb64cc3bba639913bfb75104b21c6

    • SHA256

      0748ed71c761d89c898f6acd0719d5cddc72aae70951fa4fccc20d867eaa11ad

    • SHA512

      1d35c2c835c6dfae1828e710520395daef7cbefbd178037e3e55f2c44cad75ba50793359675594ac7afeee8c738eb988f37495ac09ba1f8e72038ed5e8cbeabf

    • SSDEEP

      49152:W5Zp6SIguuBR5+s5ZvDwpPDwHvehhFKT8oBaqBeqyZSERu9WT:W5qSfuuRv0pPEehhFMBpBeq0F

    Score
    10/10
    floxifbackdoordiscoverytrojanupx

    • Floxif family

      floxif

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

      backdoortrojanfloxif

    • Detects Floxif payload

      backdoor

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks