Overview

overview

10

Static

static

1

7c02796500...d7.exe

windows7-x64

10

7c02796500...d7.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7c02796500e416a44bad8efa107733a71849844d3a7c20c087c17be7d206d5d7

  • Size

    243KB

  • Sample

    241230-hn5mca1mcz

  • MD5

    51473f4412a451de509e06ea4499f198

  • SHA1

    b1350458d65e5a03eea6a6f99b31850c85310bbd

  • SHA256

    7c02796500e416a44bad8efa107733a71849844d3a7c20c087c17be7d206d5d7

  • SHA512

    f72bfdfc6cf8a5a39a96065b713e3344ae5dfcbd37a5313cb99795227c92a3ced9879574d7ba10904d7faee6d120b2b611afe81cb6fc64cea0c97131b84f0091

  • SSDEEP

    6144:LNRiP/aK2h9H/B+3ChmBV+UdvrEFp7hKu6C:LNYP/aK2vB+yYBjvrEH78C

Score
10/10
floxifbackdoordiscoverytrojanupx

Malware Config

Targets

    • Target

      7c02796500e416a44bad8efa107733a71849844d3a7c20c087c17be7d206d5d7

    • Size

      243KB

    • MD5

      51473f4412a451de509e06ea4499f198

    • SHA1

      b1350458d65e5a03eea6a6f99b31850c85310bbd

    • SHA256

      7c02796500e416a44bad8efa107733a71849844d3a7c20c087c17be7d206d5d7

    • SHA512

      f72bfdfc6cf8a5a39a96065b713e3344ae5dfcbd37a5313cb99795227c92a3ced9879574d7ba10904d7faee6d120b2b611afe81cb6fc64cea0c97131b84f0091

    • SSDEEP

      6144:LNRiP/aK2h9H/B+3ChmBV+UdvrEFp7hKu6C:LNYP/aK2vB+yYBjvrEH78C

    Score
    10/10
    floxifbackdoordiscoverytrojanupx

    • Floxif family

      floxif

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

      backdoortrojanfloxif

    • Detects Floxif payload

      backdoor

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks