floxif | a72ab0a232a4ab3060fa733b1d3f1543823f0c8651387210b275fbe874fcc71e

General

Target

a72ab0a232a4ab3060fa733b1d3f1543823f0c8651387210b275fbe874fcc71eN.exe
Size

477KB
Sample

241218-k79fraspgs
MD5

8f70dabf0f9062e6326d40a105072580
SHA1

60efc24758de6fdc39de45439b2fef77d42e03e3
SHA256

a72ab0a232a4ab3060fa733b1d3f1543823f0c8651387210b275fbe874fcc71e
SHA512

ceeb3d8304fdd9aefac303224400d942b09cc7679f950b42192b98f6e0151954d9583ee5c04f9f659bde211a06c2adcba8630dc7f5395c815ba8de8c7ec49872
SSDEEP

6144:rFTZXSiC8EJ9iQJCG/VwZxnWOg+QqajaDl2DQTrsQvMRlkM4RD/qzMfU46PfT:rFTZmeQJCkGnnf0YtMRGM4h/qof6j

Score

10^/10

Malware Config

Targets

- Target
  
  a72ab0a232a4ab3060fa733b1d3f1543823f0c8651387210b275fbe874fcc71eN.exe
- Size
  
  477KB
- MD5
  
  8f70dabf0f9062e6326d40a105072580
- SHA1
  
  60efc24758de6fdc39de45439b2fef77d42e03e3
- SHA256
  
  a72ab0a232a4ab3060fa733b1d3f1543823f0c8651387210b275fbe874fcc71e
- SHA512
  
  ceeb3d8304fdd9aefac303224400d942b09cc7679f950b42192b98f6e0151954d9583ee5c04f9f659bde211a06c2adcba8630dc7f5395c815ba8de8c7ec49872
- SSDEEP
  
  6144:rFTZXSiC8EJ9iQJCG/VwZxnWOg+QqajaDl2DQTrsQvMRlkM4RD/qzMfU46PfT:rFTZmeQJCkGnnf0YtMRGM4h/qof6j
Score

10^/10

floxif backdoor discovery trojan upx
- Floxif family
  floxif
- Floxif, Floodfix
  Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.
  backdoor trojan floxif
- Detects Floxif payload
  backdoor
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Loads dropped DLL
- Network Service Discovery
  Attempt to gather information on host's network.
  discovery
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

1

T1046

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Floxif family

Floxif, Floodfix

Detects Floxif payload

ACProtect 1.3x - 1.4x DLL software

Loads dropped DLL

Network Service Discovery

UPX packed file

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2