Overview

overview

10

Static

static

1

2024-12-22...er.exe

windows7-x64

1

2024-12-22...er.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-12-22_e573a21091f993e01ea99a88c551e8d8_floxif_hijackloader_luca-stealer_magniber

  • Size

    4.6MB

  • Sample

    241222-lj4q2atkaj

  • MD5

    e573a21091f993e01ea99a88c551e8d8

  • SHA1

    3dd62192d88e9b447a7d6196bc4ad10ec0fb4f8e

  • SHA256

    8bade9744d8b91800c864f27bdc180db6c9c78bbafcc7ee6d82de65b46ee9f5e

  • SHA512

    a6a90c23b11ba74a5096fdc6f92335b48c50f1195a51764ddeeb691a8663325c6d61b1cb0476a23c7bdee538832f0dab3a5ed72eb84f6015693d0bbef87edc1b

  • SSDEEP

    98304:2/v5j1uP0GzjMXaJ5rd0SR0Egc5T6kJ6IsqfTVyIb0Pa:2bucG3Mqbdlg8TsqLbwPa

Score
10/10
floxifbackdoordiscoverytrojanupx

Malware Config

Targets

    • Target

      2024-12-22_e573a21091f993e01ea99a88c551e8d8_floxif_hijackloader_luca-stealer_magniber

    • Size

      4.6MB

    • MD5

      e573a21091f993e01ea99a88c551e8d8

    • SHA1

      3dd62192d88e9b447a7d6196bc4ad10ec0fb4f8e

    • SHA256

      8bade9744d8b91800c864f27bdc180db6c9c78bbafcc7ee6d82de65b46ee9f5e

    • SHA512

      a6a90c23b11ba74a5096fdc6f92335b48c50f1195a51764ddeeb691a8663325c6d61b1cb0476a23c7bdee538832f0dab3a5ed72eb84f6015693d0bbef87edc1b

    • SSDEEP

      98304:2/v5j1uP0GzjMXaJ5rd0SR0Egc5T6kJ6IsqfTVyIb0Pa:2bucG3Mqbdlg8TsqLbwPa

    Score
    10/10
    floxifbackdoordiscoverytrojanupx

    • Floxif family

      floxif

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

      backdoortrojanfloxif

    • Detects Floxif payload

      backdoor

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks