General

  • Target

    2024-11-20_9cdaef374893489a58461081233d56df_floxif_icedid_silence

  • Size

    1.6MB

  • Sample

    241120-pxj6bs1pbr

  • MD5

    9cdaef374893489a58461081233d56df

  • SHA1

    d7a3cb133cb563b04a36a70bdccc8c38511233e8

  • SHA256

    d364c08a35630cbc07e4a02148eb81b4002ee45db09f2de65f8010b31ce2d5f8

  • SHA512

    25fddca53d3a46197201d7666b4bcf826be176cfcf57b31ae33710dd00550f0658b0b9197fb4fba65895b2d28ee98ecb26815c5e55506c2ad87a5c709134f204

  • SSDEEP

    49152:MunAc+DJxMSI8V+qH4MQjffRKkN8r3qk5a71CWeyNFfN:MoAc+DJxtI8VxHyffkkN8ra/71CWeyNf

Malware Config

Targets

    • Target

      2024-11-20_9cdaef374893489a58461081233d56df_floxif_icedid_silence

    • Size

      1.6MB

    • MD5

      9cdaef374893489a58461081233d56df

    • SHA1

      d7a3cb133cb563b04a36a70bdccc8c38511233e8

    • SHA256

      d364c08a35630cbc07e4a02148eb81b4002ee45db09f2de65f8010b31ce2d5f8

    • SHA512

      25fddca53d3a46197201d7666b4bcf826be176cfcf57b31ae33710dd00550f0658b0b9197fb4fba65895b2d28ee98ecb26815c5e55506c2ad87a5c709134f204

    • SSDEEP

      49152:MunAc+DJxMSI8V+qH4MQjffRKkN8r3qk5a71CWeyNFfN:MoAc+DJxtI8VxHyffkkN8ra/71CWeyNf

    • Floxif family

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

    • Detects Floxif payload

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks