floxif | 4fb8dd9338a05e71e2f6c21cdede2990cce79ddae640749ca9fdfc25c350513b | Triage

Submit
Reports

Overview

overview

Static

static

3

2025-04-04...ys.exe

windows10-2004-x64

Sharing

General

Target

2025-04-04_c3047b71d37415949e5702997854bba7_bkransomware_floxif_karagany_metamorfo_rhadamanthys
Size

145KB
Sample

250404-gk73ma1vbx
MD5

c3047b71d37415949e5702997854bba7
SHA1

ab617a71ccec1b18a895a6253936ea662fc8b604
SHA256

4fb8dd9338a05e71e2f6c21cdede2990cce79ddae640749ca9fdfc25c350513b
SHA512

ed3ea40db4fb42393cd47622f5bc51b1cf9f0a0e162c2ff26152e391fdcec7aa6c2a6bc32d18f8a16e61781b8dc29c66e7eaa1e5fa81aeb5f37ca73e50742a0f
SSDEEP

3072:INA1IPwD+vV9+2lQBV+UdE+rECWp7hKQBQI:Ie1iE/BV+UdvrEFp7hKQP

Score

10^/10

floxif backdoor discovery trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2025-04-04_c3047b71d37415949e5702997854bba7_bkransomware_floxif_karagany_metamorfo_rhadamanthys.exe

Resource

win10v2004-20250313-en

floxif backdoor discovery trojan upx

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  2025-04-04_c3047b71d37415949e5702997854bba7_bkransomware_floxif_karagany_metamorfo_rhadamanthys
- Size
  
  145KB
- MD5
  
  c3047b71d37415949e5702997854bba7
- SHA1
  
  ab617a71ccec1b18a895a6253936ea662fc8b604
- SHA256
  
  4fb8dd9338a05e71e2f6c21cdede2990cce79ddae640749ca9fdfc25c350513b
- SHA512
  
  ed3ea40db4fb42393cd47622f5bc51b1cf9f0a0e162c2ff26152e391fdcec7aa6c2a6bc32d18f8a16e61781b8dc29c66e7eaa1e5fa81aeb5f37ca73e50742a0f
- SSDEEP
  
  3072:INA1IPwD+vV9+2lQBV+UdE+rECWp7hKQBQI:Ie1iE/BV+UdvrEFp7hKQP
Score

10^/10

floxif backdoor discovery trojan upx
- Floxif family
  floxif
- Floxif, Floodfix
  Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.
  backdoor trojan floxif
- Detects Floxif payload
  backdoor
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

floxifbackdoordiscoverytrojanupx

© 2018-2025

Terms | Privacy