floxif | a81ee6b024bb730a3bc131010c8efe9fbe0dd6830ddd4b6f9dd7704ee9efab61 | Triage

Submit
Reports

Overview

overview

Static

static

1

a81ee6b024...61.exe

windows7-x64

a81ee6b024...61.exe

windows10-2004-x64

Sharing

General

Target

a81ee6b024bb730a3bc131010c8efe9fbe0dd6830ddd4b6f9dd7704ee9efab61
Size

943KB
Sample

241230-d83w2axjhy
MD5

c9cd57593607fad19d782408f1acec84
SHA1

ccf784b267528b67bd35906c001bf58232cbfbd7
SHA256

a81ee6b024bb730a3bc131010c8efe9fbe0dd6830ddd4b6f9dd7704ee9efab61
SHA512

30dd5e2f5eea010171e3a96a4bfba1ca2f570bb3005b54fc5a25e76983ec6de50ed53da717e078be9a23f5b7815db7a5d280d1be66d1c22ed51558d85e468fcd
SSDEEP

24576:yOo5yT/tMbHWc8eC9TqOUk12+lm/HIpUqI1kVlFo1U4OmrEH76d:yOowTKbHqlcBInokDGdOod

Score

10^/10

floxif backdoor discovery trojan upx

Static task

static1

Behavioral task

behavioral1

Sample

a81ee6b024bb730a3bc131010c8efe9fbe0dd6830ddd4b6f9dd7704ee9efab61.exe

Resource

win7-20240903-en

floxif backdoor discovery trojan upx

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

a81ee6b024bb730a3bc131010c8efe9fbe0dd6830ddd4b6f9dd7704ee9efab61.exe

Resource

win10v2004-20241007-en

floxif backdoor discovery trojan upx

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  a81ee6b024bb730a3bc131010c8efe9fbe0dd6830ddd4b6f9dd7704ee9efab61
- Size
  
  943KB
- MD5
  
  c9cd57593607fad19d782408f1acec84
- SHA1
  
  ccf784b267528b67bd35906c001bf58232cbfbd7
- SHA256
  
  a81ee6b024bb730a3bc131010c8efe9fbe0dd6830ddd4b6f9dd7704ee9efab61
- SHA512
  
  30dd5e2f5eea010171e3a96a4bfba1ca2f570bb3005b54fc5a25e76983ec6de50ed53da717e078be9a23f5b7815db7a5d280d1be66d1c22ed51558d85e468fcd
- SSDEEP
  
  24576:yOo5yT/tMbHWc8eC9TqOUk12+lm/HIpUqI1kVlFo1U4OmrEH76d:yOowTKbHqlcBInokDGdOod
Score

10^/10

floxif backdoor discovery trojan upx
- Floxif family
  floxif
- Floxif, Floodfix
  Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.
  backdoor trojan floxif
- Detects Floxif payload
  backdoor
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

floxifbackdoordiscoverytrojanupx

behavioral2

floxifbackdoordiscoverytrojanupx

© 2018-2025

Terms | Privacy