floxif | 1aaa6d1f1ec6fb925de0ef67b0bcdf32b0059283e0e847002d57241b2e6ec736 | Triage

Submit
Reports

Overview

overview

Static

static

1

1aaa6d1f1e...36.exe

windows7-x64

1aaa6d1f1e...36.exe

windows10-2004-x64

Sharing

General

Target

1aaa6d1f1ec6fb925de0ef67b0bcdf32b0059283e0e847002d57241b2e6ec736
Size

234KB
Sample

241213-xy9flsyraq
MD5

d7de380ec7393830de71c83de65e7247
SHA1

13bf2aac42601f6faffe238ceb2ba8c263697966
SHA256

1aaa6d1f1ec6fb925de0ef67b0bcdf32b0059283e0e847002d57241b2e6ec736
SHA512

0c59a30664c8fe2e614478db1d84c3dd250b266ded13e0724ef9ae9ff8590e23ca3ae31d430fab7e72a71b25bfabae222d198d60a3d3de9323a26179269a56b1
SSDEEP

3072:uwzvOYTB5YP//Q/DvbEvK9aobNI2B+flkL7OjUuxGftPyhdY55s2ZUuyNFhyzzZn:bBiP//Yh9H/B+/kBV+UdvrEFp7hKvpr5

Score

10^/10

floxif backdoor discovery trojan upx

Static task

static1

Behavioral task

behavioral1

Sample

1aaa6d1f1ec6fb925de0ef67b0bcdf32b0059283e0e847002d57241b2e6ec736.exe

Resource

win7-20240708-en

floxif backdoor discovery trojan upx

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

1aaa6d1f1ec6fb925de0ef67b0bcdf32b0059283e0e847002d57241b2e6ec736.exe

Resource

win10v2004-20241007-en

floxif backdoor discovery trojan upx

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  1aaa6d1f1ec6fb925de0ef67b0bcdf32b0059283e0e847002d57241b2e6ec736
- Size
  
  234KB
- MD5
  
  d7de380ec7393830de71c83de65e7247
- SHA1
  
  13bf2aac42601f6faffe238ceb2ba8c263697966
- SHA256
  
  1aaa6d1f1ec6fb925de0ef67b0bcdf32b0059283e0e847002d57241b2e6ec736
- SHA512
  
  0c59a30664c8fe2e614478db1d84c3dd250b266ded13e0724ef9ae9ff8590e23ca3ae31d430fab7e72a71b25bfabae222d198d60a3d3de9323a26179269a56b1
- SSDEEP
  
  3072:uwzvOYTB5YP//Q/DvbEvK9aobNI2B+flkL7OjUuxGftPyhdY55s2ZUuyNFhyzzZn:bBiP//Yh9H/B+/kBV+UdvrEFp7hKvpr5
Score

10^/10

floxif backdoor discovery trojan upx
- Floxif family
  floxif
- Floxif, Floodfix
  Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.
  backdoor trojan floxif
- Detects Floxif payload
  backdoor
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

floxifbackdoordiscoverytrojanupx

behavioral2

floxifbackdoordiscoverytrojanupx

© 2018-2025

Terms | Privacy