floxif | 295688ba2eacbe2126b6c7bbcd0dd6d47d700051a8e9fe62174753d2b4c454dd

General

Target

295688ba2eacbe2126b6c7bbcd0dd6d47d700051a8e9fe62174753d2b4c454ddN.exe
Size

1.5MB
Sample

241218-2yadqswpcn
MD5

6a1558f276478faf988a1c6f347e27c0
SHA1

ade66ca6f8ef9b36e58cecb8843e78f371df98ce
SHA256

295688ba2eacbe2126b6c7bbcd0dd6d47d700051a8e9fe62174753d2b4c454dd
SHA512

d03af33471baeae927f04bb2093d3f10dd09b0222e8add3c09a9e839d8248f7b95333019ae90330cc97da84732b8e5b111e452bc6f6d96a6eb872e559c5facd0
SSDEEP

24576:OXt04QyT35DR7tXrmbXTHnRIDDm58QtMOtDNfbDT9evfsGQUJYjyTxezWjP4MRGb:UpVtX+Vpb9e1oyTsWjy1qq

Score

10^/10

Malware Config

Targets

- Target
  
  295688ba2eacbe2126b6c7bbcd0dd6d47d700051a8e9fe62174753d2b4c454ddN.exe
- Size
  
  1.5MB
- MD5
  
  6a1558f276478faf988a1c6f347e27c0
- SHA1
  
  ade66ca6f8ef9b36e58cecb8843e78f371df98ce
- SHA256
  
  295688ba2eacbe2126b6c7bbcd0dd6d47d700051a8e9fe62174753d2b4c454dd
- SHA512
  
  d03af33471baeae927f04bb2093d3f10dd09b0222e8add3c09a9e839d8248f7b95333019ae90330cc97da84732b8e5b111e452bc6f6d96a6eb872e559c5facd0
- SSDEEP
  
  24576:OXt04QyT35DR7tXrmbXTHnRIDDm58QtMOtDNfbDT9evfsGQUJYjyTxezWjP4MRGb:UpVtX+Vpb9e1oyTsWjy1qq
Score

10^/10

floxif backdoor discovery trojan upx
- Floxif family
  floxif
- Floxif, Floodfix
  Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.
  backdoor trojan floxif
- Detects Floxif payload
  backdoor
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Loads dropped DLL
- Network Service Discovery
  Attempt to gather information on host's network.
  discovery
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

1

T1046

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Floxif family

Floxif, Floodfix

Detects Floxif payload

ACProtect 1.3x - 1.4x DLL software

Loads dropped DLL

Network Service Discovery

UPX packed file

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2