Overview

overview

10

Static

static

1

2025-01-30...ia.exe

windows7-x64

10

2025-01-30...ia.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2025-01-30_6522a24734f71366d6e88131b313d57a_floxif_mafia

  • Size

    512KB

  • Sample

    250130-2alf4atrhv

  • MD5

    6522a24734f71366d6e88131b313d57a

  • SHA1

    44f0aba11500ba69d24cf64cef58573e835799b7

  • SHA256

    1e8a3792f4d0ae977930f76ae4edbf0070e1f5fa7820f99533dd5f9ccb008cae

  • SHA512

    3297c7741042f613b0f4dc7b0e55a6b65cd14010a43eea5df8ccaff9d9b77088cfaf538e4ca2fe770bdec8d3dffe3c95da7444c729f3ce9a52af8e18d0b5c69b

  • SSDEEP

    12288:HKqMmoNiZiJrAkg+eeEpE6nPMz7S5VnDwvFNFSXGhK1VqejEdkGE2azATABjvrEI:HKqMmodg+epE6nP47eVS2GhK1VqeIApF

Score
10/10
floxifbackdoordiscoverytrojanupx

Malware Config

Targets

    • Target

      2025-01-30_6522a24734f71366d6e88131b313d57a_floxif_mafia

    • Size

      512KB

    • MD5

      6522a24734f71366d6e88131b313d57a

    • SHA1

      44f0aba11500ba69d24cf64cef58573e835799b7

    • SHA256

      1e8a3792f4d0ae977930f76ae4edbf0070e1f5fa7820f99533dd5f9ccb008cae

    • SHA512

      3297c7741042f613b0f4dc7b0e55a6b65cd14010a43eea5df8ccaff9d9b77088cfaf538e4ca2fe770bdec8d3dffe3c95da7444c729f3ce9a52af8e18d0b5c69b

    • SSDEEP

      12288:HKqMmoNiZiJrAkg+eeEpE6nPMz7S5VnDwvFNFSXGhK1VqejEdkGE2azATABjvrEI:HKqMmodg+epE6nP47eVS2GhK1VqeIApF

    Score
    10/10
    floxifbackdoordiscoverytrojanupx

    • Floxif family

      floxif

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

      backdoortrojanfloxif

    • Detects Floxif payload

      backdoor

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks