Overview

overview

10

Static

static

1

f37c662906...4N.dll

windows7-x64

10

f37c662906...4N.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f37c66290615525b1226b8189b8462135af1b1e88034a41ca47107498055b604N.exe

  • Size

    241KB

  • Sample

    241226-ykdmfsxjgv

  • MD5

    8b79e5182923b1cb542a4d0a065e9860

  • SHA1

    f819196bf93221f6760a943f080f63c90504efc7

  • SHA256

    f37c66290615525b1226b8189b8462135af1b1e88034a41ca47107498055b604

  • SHA512

    d1cff7fe66f999a29b9a6c325762df47d6584e4d274888d08550ffec98b51e381c22aa019dd2632d15898ad2c64a589a7247186af0f947d18b0534c97d430f76

  • SSDEEP

    6144:GTWYCAvCMeFF3sTnvOTB5VsQvMRlkM4RD/qzMfUpFg:GKYTuFFmnvOT7MRGM4h/qofkg

Score
10/10
floxifbackdoordiscoverytrojanupx

Malware Config

Targets

    • Target

      f37c66290615525b1226b8189b8462135af1b1e88034a41ca47107498055b604N.exe

    • Size

      241KB

    • MD5

      8b79e5182923b1cb542a4d0a065e9860

    • SHA1

      f819196bf93221f6760a943f080f63c90504efc7

    • SHA256

      f37c66290615525b1226b8189b8462135af1b1e88034a41ca47107498055b604

    • SHA512

      d1cff7fe66f999a29b9a6c325762df47d6584e4d274888d08550ffec98b51e381c22aa019dd2632d15898ad2c64a589a7247186af0f947d18b0534c97d430f76

    • SSDEEP

      6144:GTWYCAvCMeFF3sTnvOTB5VsQvMRlkM4RD/qzMfUpFg:GKYTuFFmnvOT7MRGM4h/qofkg

    Score
    10/10
    floxifbackdoordiscoverytrojanupx

    • Floxif family

      floxif

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

      backdoortrojanfloxif

    • Detects Floxif payload

      backdoor

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • Network Service Discovery

      Attempt to gather information on host's network.

      discovery

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks