Overview

overview

10

Static

static

1

acf87f6b34...e7.dll

windows7-x64

10

acf87f6b34...e7.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    acf87f6b345e8a552853427a3afad300388b3634d3f963eb027f457ca7a492e7

  • Size

    223KB

  • Sample

    241221-2xdprsspgs

  • MD5

    5b5a654b28f5a4787bbceca847423422

  • SHA1

    56d3389143b0bbd7b7762766de78b46277fcbf69

  • SHA256

    acf87f6b345e8a552853427a3afad300388b3634d3f963eb027f457ca7a492e7

  • SHA512

    d3ea9c9a570507769076c034039b0af75cb2a6f1c2a3e4b0e66d58f88d27cb01bb57a0f3c270e613978bf47fb57ca6c8ba4543789c8550c13d6edf12b7336dce

  • SSDEEP

    3072:6huf5AUWGIcv8JvK2ROAnAZdlGZxIOtY81fs2lQBV+UdE+rECWp7hK1al:ZBAUWGkVROYLIBV+UdvrEFp7hK0l

Score
10/10
floxifbackdoordiscoverytrojanupx

Malware Config

Targets

    • Target

      acf87f6b345e8a552853427a3afad300388b3634d3f963eb027f457ca7a492e7

    • Size

      223KB

    • MD5

      5b5a654b28f5a4787bbceca847423422

    • SHA1

      56d3389143b0bbd7b7762766de78b46277fcbf69

    • SHA256

      acf87f6b345e8a552853427a3afad300388b3634d3f963eb027f457ca7a492e7

    • SHA512

      d3ea9c9a570507769076c034039b0af75cb2a6f1c2a3e4b0e66d58f88d27cb01bb57a0f3c270e613978bf47fb57ca6c8ba4543789c8550c13d6edf12b7336dce

    • SSDEEP

      3072:6huf5AUWGIcv8JvK2ROAnAZdlGZxIOtY81fs2lQBV+UdE+rECWp7hK1al:ZBAUWGkVROYLIBV+UdvrEFp7hK0l

    Score
    10/10
    floxifbackdoordiscoverytrojanupx

    • Floxif family

      floxif

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

      backdoortrojanfloxif

    • Detects Floxif payload

      backdoor

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks