floxif | d0269119bb60707a41532a5fb1acdd542b0ab66ac109ff87ca3ddb7b00ae89db | Triage

Submit
Reports

Overview

overview

Static

static

1

d0269119bb...db.dll

windows7-x64

d0269119bb...db.dll

windows10-2004-x64

Sharing

General

Target

d0269119bb60707a41532a5fb1acdd542b0ab66ac109ff87ca3ddb7b00ae89db
Size

765KB
Sample

250128-d246hswjht
MD5

29faccd202d9db8a67ae034927958a12
SHA1

d5eb1cad9247e63bbf13d3a3e63692f158b10874
SHA256

d0269119bb60707a41532a5fb1acdd542b0ab66ac109ff87ca3ddb7b00ae89db
SHA512

1e99434b3f711b3bcca36172218f10076bca35a39d3ad1c8ca40f0d4c6a3b1bcd783cb50fce6eb18de81acc26e91a32c8cb4b8956fe010e72742444a29484382
SSDEEP

12288:qNwqOUengE0phFKxZVovamPYySE4B2AmkfWvPfuh2fllghUQKuyvcI+jKKj+zV67:q6wEu8ZOimgySE4BWnKKlLuyEI+CV63L

Score

10^/10

floxif backdoor discovery trojan upx

Static task

static1

Behavioral task

behavioral1

Sample

d0269119bb60707a41532a5fb1acdd542b0ab66ac109ff87ca3ddb7b00ae89db.dll

Resource

win7-20240903-en

floxif backdoor discovery trojan upx

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

d0269119bb60707a41532a5fb1acdd542b0ab66ac109ff87ca3ddb7b00ae89db.dll

Resource

win10v2004-20241007-en

floxif backdoor discovery trojan upx

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  d0269119bb60707a41532a5fb1acdd542b0ab66ac109ff87ca3ddb7b00ae89db
- Size
  
  765KB
- MD5
  
  29faccd202d9db8a67ae034927958a12
- SHA1
  
  d5eb1cad9247e63bbf13d3a3e63692f158b10874
- SHA256
  
  d0269119bb60707a41532a5fb1acdd542b0ab66ac109ff87ca3ddb7b00ae89db
- SHA512
  
  1e99434b3f711b3bcca36172218f10076bca35a39d3ad1c8ca40f0d4c6a3b1bcd783cb50fce6eb18de81acc26e91a32c8cb4b8956fe010e72742444a29484382
- SSDEEP
  
  12288:qNwqOUengE0phFKxZVovamPYySE4B2AmkfWvPfuh2fllghUQKuyvcI+jKKj+zV67:q6wEu8ZOimgySE4BWnKKlLuyEI+CV63L
Score

10^/10

floxif backdoor discovery trojan upx
- Floxif family
  floxif
- Floxif, Floodfix
  Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.
  backdoor trojan floxif
- Detects Floxif payload
  backdoor
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

floxifbackdoordiscoverytrojanupx

behavioral2

floxifbackdoordiscoverytrojanupx

© 2018-2025

Terms | Privacy