floxif | 242fcce8e3ba9a5e36a1de52a279aea7b1555ceae54b9c786d2e3249a14ecfc9

General

Target

242fcce8e3ba9a5e36a1de52a279aea7b1555ceae54b9c786d2e3249a14ecfc9
Size

178KB
Sample

250101-zn9dzatmgs
MD5

3c7d1ed365301aca635cd536e0465fd8
SHA1

6f15fcaab1a964393ca21bdf8bcedbcc771ee4f0
SHA256

242fcce8e3ba9a5e36a1de52a279aea7b1555ceae54b9c786d2e3249a14ecfc9
SHA512

5d07e4418de8430dc0b01c6a8e593e09641fc57f0deae6f59846e92e9d538534a611abc7d6a8bd0f4e6ae18dbb45385521778751696781e3ddc0a4dadd23164e
SSDEEP

3072:2GbYMj7630VknYm6VxpTOZWdpAsQvVqRlkM4OAD/KLznBuB2JA2Bj06:EA76kVnpTOZWd2sQvMRlkM4RD/qzMfUF

Score

10^/10

Malware Config

Targets

- Target
  
  242fcce8e3ba9a5e36a1de52a279aea7b1555ceae54b9c786d2e3249a14ecfc9
- Size
  
  178KB
- MD5
  
  3c7d1ed365301aca635cd536e0465fd8
- SHA1
  
  6f15fcaab1a964393ca21bdf8bcedbcc771ee4f0
- SHA256
  
  242fcce8e3ba9a5e36a1de52a279aea7b1555ceae54b9c786d2e3249a14ecfc9
- SHA512
  
  5d07e4418de8430dc0b01c6a8e593e09641fc57f0deae6f59846e92e9d538534a611abc7d6a8bd0f4e6ae18dbb45385521778751696781e3ddc0a4dadd23164e
- SSDEEP
  
  3072:2GbYMj7630VknYm6VxpTOZWdpAsQvVqRlkM4OAD/KLznBuB2JA2Bj06:EA76kVnpTOZWd2sQvMRlkM4RD/qzMfUF
Score

10^/10

floxif backdoor discovery trojan upx
- Floxif family
  floxif
- Floxif, Floodfix
  Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.
  backdoor trojan floxif
- Detects Floxif payload
  backdoor
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Loads dropped DLL
- Network Service Discovery
  Attempt to gather information on host's network.
  discovery
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

1

T1046

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Floxif family

Floxif, Floodfix

Detects Floxif payload

ACProtect 1.3x - 1.4x DLL software

Loads dropped DLL

Network Service Discovery

UPX packed file

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2