Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-12-23_7acd7200044e569e6147907d7ed3dd23_floxif_hijackloader_luca-stealer_magniber

  • Size

    4.6MB

  • Sample

    241223-lcllwaxqg1

  • MD5

    7acd7200044e569e6147907d7ed3dd23

  • SHA1

    5c19bc3c2eefd44bf27a9c54e0e72dde0ded024f

  • SHA256

    11dae9d1241eceac6b7bde67cf4eb5735597024dd2d7620cd8a88d4ca9c7c105

  • SHA512

    7243b74895e181b8d2fd891dd46fe278e6618c8057b0ccdff6096317bc63a880c5d2e06dede78aa5ee779adf2f15c929c579b060cdc80900b603670e203c1153

  • SSDEEP

    98304:+kvFVLqAZo/+sODYSNJ/GgYWGRvQk9lmVJaRy/9LbS:VFYAZ9sAugT4QJmML2

Malware Config

Targets

    • Target

      2024-12-23_7acd7200044e569e6147907d7ed3dd23_floxif_hijackloader_luca-stealer_magniber

    • Size

      4.6MB

    • MD5

      7acd7200044e569e6147907d7ed3dd23

    • SHA1

      5c19bc3c2eefd44bf27a9c54e0e72dde0ded024f

    • SHA256

      11dae9d1241eceac6b7bde67cf4eb5735597024dd2d7620cd8a88d4ca9c7c105

    • SHA512

      7243b74895e181b8d2fd891dd46fe278e6618c8057b0ccdff6096317bc63a880c5d2e06dede78aa5ee779adf2f15c929c579b060cdc80900b603670e203c1153

    • SSDEEP

      98304:+kvFVLqAZo/+sODYSNJ/GgYWGRvQk9lmVJaRy/9LbS:VFYAZ9sAugT4QJmML2

    • Floxif family

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

    • Detects Floxif payload

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks