Overview

overview

10

Static

static

1

2024-12-11...ia.exe

windows7-x64

10

2024-12-11...ia.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-12-11_ece86fa34feb955f71eac9f38b2dee36_floxif_mafia

  • Size

    1.4MB

  • Sample

    241211-psn9gsspd1

  • MD5

    ece86fa34feb955f71eac9f38b2dee36

  • SHA1

    e56dd0b6a3cf9320dec071b0249633310d4c1cf8

  • SHA256

    06846342b95f31443367bd23680c2b76dde964a1d8abdbacf58a43b31f906e8e

  • SHA512

    c6a21242e4872bfabac1314af94e27088c7f1dbec990d3b938c6d12606c4bc7ab4a091d99a315d96a8162e8904f27f58cf024c0e977718d72e930e8b739534e2

  • SSDEEP

    24576:VKAd/monVAqRVzkBht46sARJGJ8Tr5wWTsrwrPsrf8NRbAraf2ezPrEH7I:UsnVAqR846sSc6T1wWTskbswNRkUDzV

Score
10/10
floxifbackdoordiscoverytrojanupx

Malware Config

Targets

    • Target

      2024-12-11_ece86fa34feb955f71eac9f38b2dee36_floxif_mafia

    • Size

      1.4MB

    • MD5

      ece86fa34feb955f71eac9f38b2dee36

    • SHA1

      e56dd0b6a3cf9320dec071b0249633310d4c1cf8

    • SHA256

      06846342b95f31443367bd23680c2b76dde964a1d8abdbacf58a43b31f906e8e

    • SHA512

      c6a21242e4872bfabac1314af94e27088c7f1dbec990d3b938c6d12606c4bc7ab4a091d99a315d96a8162e8904f27f58cf024c0e977718d72e930e8b739534e2

    • SSDEEP

      24576:VKAd/monVAqRVzkBht46sARJGJ8Tr5wWTsrwrPsrf8NRbAraf2ezPrEH7I:UsnVAqR846sSc6T1wWTskbswNRkUDzV

    Score
    10/10
    floxifbackdoordiscoverytrojanupx

    • Floxif family

      floxif

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

      backdoortrojanfloxif

    • Detects Floxif payload

      backdoor

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks