Overview

overview

10

Static

static

1

cbeaf83a65...cN.dll

windows7-x64

10

cbeaf83a65...cN.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cbeaf83a65230e52acd49f8d936a210e0b3f94003fb9788f3eed99c734cb370cN.exe

  • Size

    260KB

  • Sample

    241222-gxzl1sxlel

  • MD5

    61f9105a65c3d924c75a5841bed66700

  • SHA1

    52516253d1ed37934f5ca5c3a15656f055641f84

  • SHA256

    cbeaf83a65230e52acd49f8d936a210e0b3f94003fb9788f3eed99c734cb370c

  • SHA512

    b8f0a82ba89437e87b90bde9b467f33fe15ad4b15648af3c7982734d3f2b7df56a19b51da68cde2cbf6a09eafe8b4f1c83fb493c2a374754ad935034664448d2

  • SSDEEP

    6144:XHj8fmHmAgoz+cU2abfLssngRmBV+UdvrEFp7hKy:XHofmGpPgRmBjvrEH7N

Score
10/10
floxifbackdoordiscoverytrojanupx

Malware Config

Targets

    • Target

      cbeaf83a65230e52acd49f8d936a210e0b3f94003fb9788f3eed99c734cb370cN.exe

    • Size

      260KB

    • MD5

      61f9105a65c3d924c75a5841bed66700

    • SHA1

      52516253d1ed37934f5ca5c3a15656f055641f84

    • SHA256

      cbeaf83a65230e52acd49f8d936a210e0b3f94003fb9788f3eed99c734cb370c

    • SHA512

      b8f0a82ba89437e87b90bde9b467f33fe15ad4b15648af3c7982734d3f2b7df56a19b51da68cde2cbf6a09eafe8b4f1c83fb493c2a374754ad935034664448d2

    • SSDEEP

      6144:XHj8fmHmAgoz+cU2abfLssngRmBV+UdvrEFp7hKy:XHofmGpPgRmBjvrEH7N

    Score
    10/10
    floxifbackdoordiscoverytrojanupx

    • Floxif family

      floxif

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

      backdoortrojanfloxif

    • Detects Floxif payload

      backdoor

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks