floxif | fd7d71c244ca60e38316afb083c3f7ba284e3fe9949dd64a1f548e82eec11bc9 | Triage

Submit
Reports

Overview

overview

Static

static

5

fd7d71c244...c9.exe

windows7-x64

fd7d71c244...c9.exe

windows10-2004-x64

Sharing

General

Target

fd7d71c244ca60e38316afb083c3f7ba284e3fe9949dd64a1f548e82eec11bc9
Size

2.1MB
Sample

250203-hx67jawmdq
MD5

20ade9a57891bf9e6cd5d68cfa1cfe5e
SHA1

ed9ab8345dde42e3b0cbb5313eb6e849bcf16873
SHA256

fd7d71c244ca60e38316afb083c3f7ba284e3fe9949dd64a1f548e82eec11bc9
SHA512

c41ed8976fb0242d9496d22f0bce642d6a0579e8f81cc5ee93f7ce055f1c820e1823600c21fe656648f45f51c5d4c02d66b1bd98ded549ed6971b5f7eb6752ae
SSDEEP

49152:joZEXJF30IxjzdK66n+NUJ3yRzMsm+gBn7:jAEXYIxjBY+hRO+g17

Score

10^/10

floxif backdoor discovery trojan upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

fd7d71c244ca60e38316afb083c3f7ba284e3fe9949dd64a1f548e82eec11bc9.exe

Resource

win7-20241010-en

floxif backdoor discovery trojan upx

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

fd7d71c244ca60e38316afb083c3f7ba284e3fe9949dd64a1f548e82eec11bc9.exe

Resource

win10v2004-20250129-en

floxif backdoor discovery trojan upx

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  fd7d71c244ca60e38316afb083c3f7ba284e3fe9949dd64a1f548e82eec11bc9
- Size
  
  2.1MB
- MD5
  
  20ade9a57891bf9e6cd5d68cfa1cfe5e
- SHA1
  
  ed9ab8345dde42e3b0cbb5313eb6e849bcf16873
- SHA256
  
  fd7d71c244ca60e38316afb083c3f7ba284e3fe9949dd64a1f548e82eec11bc9
- SHA512
  
  c41ed8976fb0242d9496d22f0bce642d6a0579e8f81cc5ee93f7ce055f1c820e1823600c21fe656648f45f51c5d4c02d66b1bd98ded549ed6971b5f7eb6752ae
- SSDEEP
  
  49152:joZEXJF30IxjzdK66n+NUJ3yRzMsm+gBn7:jAEXYIxjBY+hRO+g17
Score

10^/10

floxif backdoor discovery trojan upx
- Floxif family
  floxif
- Floxif, Floodfix
  Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.
  backdoor trojan floxif
- Detects Floxif payload
  backdoor
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

floxifbackdoordiscoverytrojanupx

behavioral2

floxifbackdoordiscoverytrojanupx

© 2018-2025

Terms | Privacy