floxif | 88d644921f41fd6642dd11016b3e2f9b8c3d254451bfd244fffaf087140d91b0

General

Target

88d644921f41fd6642dd11016b3e2f9b8c3d254451bfd244fffaf087140d91b0N.exe
Size

416KB
Sample

250207-1am49aylhz
MD5

3b10c26c9683a3d4b0f6e0864a1f7440
SHA1

39ad0b794689cbf8d9a3cc2145d34fab80e8d6a2
SHA256

88d644921f41fd6642dd11016b3e2f9b8c3d254451bfd244fffaf087140d91b0
SHA512

a9bcade25bbd96d67d50c2df9b536f4341b183e968ece563723a55b60204da359d3988068a2f9b2f636fc8649801f7379702d74a9afdbe6ab9ea9de4260595c6
SSDEEP

6144:DOQaXJ41vB1YLzRndxB5YPTmM76zHu0vJd1sfFv1pg5dC/49uBV+UdvrEFp7hKw/:DOQMGcNnLXymc678qC/4gBjvrEH7P

Score

10^/10

Malware Config

Targets

- Target
  
  88d644921f41fd6642dd11016b3e2f9b8c3d254451bfd244fffaf087140d91b0N.exe
- Size
  
  416KB
- MD5
  
  3b10c26c9683a3d4b0f6e0864a1f7440
- SHA1
  
  39ad0b794689cbf8d9a3cc2145d34fab80e8d6a2
- SHA256
  
  88d644921f41fd6642dd11016b3e2f9b8c3d254451bfd244fffaf087140d91b0
- SHA512
  
  a9bcade25bbd96d67d50c2df9b536f4341b183e968ece563723a55b60204da359d3988068a2f9b2f636fc8649801f7379702d74a9afdbe6ab9ea9de4260595c6
- SSDEEP
  
  6144:DOQaXJ41vB1YLzRndxB5YPTmM76zHu0vJd1sfFv1pg5dC/49uBV+UdvrEFp7hKw/:DOQMGcNnLXymc678qC/4gBjvrEH7P
Score

10^/10

floxif backdoor discovery trojan upx
- Floxif family
  floxif
- Floxif, Floodfix
  Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.
  backdoor trojan floxif
- Detects Floxif payload
  backdoor
- Downloads MZ/PE file
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

System Network Configuration Discovery

1

T1016

Internet Connection Discovery

1

T1016.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Floxif family

Floxif, Floodfix

Detects Floxif payload

Downloads MZ/PE file

ACProtect 1.3x - 1.4x DLL software

Loads dropped DLL

UPX packed file

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2