Overview

overview

10

Static

static

1

68004415a8...50.exe

windows7-x64

1

68004415a8...50.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    68004415a84a75327187bebdf81c84496db3e65cc298055c62987f6be031bf50

  • Size

    4.6MB

  • Sample

    241223-hfy5laxjby

  • MD5

    49895897bcc52e74b4f5664c30d96ef8

  • SHA1

    18c649574a1c36447b36d2d43eaf57150462889b

  • SHA256

    68004415a84a75327187bebdf81c84496db3e65cc298055c62987f6be031bf50

  • SHA512

    38e70300bee1ba414d3ef8acd57a21ed39702160ca499dd8e2e77995d6a1c446360cd945dd6c896cd7f2085c1361118febc12716887ab7ca74c8aa9249785599

  • SSDEEP

    98304:mXvTYTSbb/lIyuuJx2dg/Sxv1WzrZhJiyEbhh/rH:2TkS/dUumgakZTzED

Score
10/10
floxifbackdoordiscoverytrojanupx

Malware Config

Targets

    • Target

      68004415a84a75327187bebdf81c84496db3e65cc298055c62987f6be031bf50

    • Size

      4.6MB

    • MD5

      49895897bcc52e74b4f5664c30d96ef8

    • SHA1

      18c649574a1c36447b36d2d43eaf57150462889b

    • SHA256

      68004415a84a75327187bebdf81c84496db3e65cc298055c62987f6be031bf50

    • SHA512

      38e70300bee1ba414d3ef8acd57a21ed39702160ca499dd8e2e77995d6a1c446360cd945dd6c896cd7f2085c1361118febc12716887ab7ca74c8aa9249785599

    • SSDEEP

      98304:mXvTYTSbb/lIyuuJx2dg/Sxv1WzrZhJiyEbhh/rH:2TkS/dUumgakZTzED

    Score
    10/10
    floxifbackdoordiscoverytrojanupx

    • Floxif family

      floxif

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

      backdoortrojanfloxif

    • Detects Floxif payload

      backdoor

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks