Overview

overview

10

Static

static

1

cd2a15a3f7...0a.exe

windows7-x64

10

cd2a15a3f7...0a.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cd2a15a3f7efb68d9285a3d1cc7c2aaaaa9d7d4a8a2f49f3ee8e6b08f2cb410a

  • Size

    286KB

  • Sample

    241224-r6gsnsznem

  • MD5

    d0f439477ec0578713ba79a7453571dd

  • SHA1

    f79ddbba978ac9d280f3719ef1e3757a6fd2d0a1

  • SHA256

    cd2a15a3f7efb68d9285a3d1cc7c2aaaaa9d7d4a8a2f49f3ee8e6b08f2cb410a

  • SHA512

    be6851c06c5c42ebfa906e4ce35c812876aeefb1569cf6700bef5ad492ffa3b496bf279602e066278b5785aae42a765c655a765396c4b4ff6eade30a504fb8c0

  • SSDEEP

    6144:r7gKNlc5kHouyXnZhB+h8WHlBV+UdvrEFp7hKi1:r7gKNlcJuyXnPB+h8WHlBjvrEH7l1

Score
10/10
floxifbackdoordiscoverytrojanupx

Malware Config

Targets

    • Target

      cd2a15a3f7efb68d9285a3d1cc7c2aaaaa9d7d4a8a2f49f3ee8e6b08f2cb410a

    • Size

      286KB

    • MD5

      d0f439477ec0578713ba79a7453571dd

    • SHA1

      f79ddbba978ac9d280f3719ef1e3757a6fd2d0a1

    • SHA256

      cd2a15a3f7efb68d9285a3d1cc7c2aaaaa9d7d4a8a2f49f3ee8e6b08f2cb410a

    • SHA512

      be6851c06c5c42ebfa906e4ce35c812876aeefb1569cf6700bef5ad492ffa3b496bf279602e066278b5785aae42a765c655a765396c4b4ff6eade30a504fb8c0

    • SSDEEP

      6144:r7gKNlc5kHouyXnZhB+h8WHlBV+UdvrEFp7hKi1:r7gKNlcJuyXnPB+h8WHlBjvrEH7l1

    Score
    10/10
    floxifbackdoordiscoverytrojanupx

    • Floxif family

      floxif

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

      backdoortrojanfloxif

    • Detects Floxif payload

      backdoor

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks