Trojan

TrojanDropper:Win32/Floxif!pz removal guide

Malware Removal

The TrojanDropper:Win32/Floxif!pz is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What TrojanDropper:Win32/Floxif!pz virus can do?

  • Sample contains Overlay data
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Authenticode signature is invalid
  • CAPE detected the FloodFix malware family
  • Yara detections observed in process dumps, payloads or dropped files

How to determine TrojanDropper:Win32/Floxif!pz?



File Info:

name: 01FCA9638E11417854E4.mlw
path: /opt/CAPEv2/storage/binaries/a9bd105a7ef6c6ab1d7675607c461ba81e9b40adb2e2c58ac8aee4841ed248da
crc32: 722E113E
md5: 01fca9638e11417854e4249173365c55
sha1: 159ebb67f355a2be1c9c867bc6fc3555207d0af4
sha256: a9bd105a7ef6c6ab1d7675607c461ba81e9b40adb2e2c58ac8aee4841ed248da
sha512: 83f7551685dcee6844efa1195a98273fbca047ee3522e010e8bfdd275b32fc99a198b574d677fbe413db55c78a62cb3be81ed8c397585f9f320fe2cf16013720
ssdeep: 1536:D4cHBqZYOMagMh51GOJdpOm65jwGHXlAq5meKo32NGMcIM5vjx:DtixMafpdom6dwoqqEvNjcZvjx
type: PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
tlsh: T11B83E12B65AC982BD9B26B73C25F4359FD35F8658926D43381402696A433FD0E303B6E
sha3_384: 74381e960bea0b9f3d3e1e2db0b83abc57237cc4f85a00dbfb543897d504e059e69adf9945de3754a92ec8833e4592a2
ep_bytes: 807c2408010f85b901000060be001002
timestamp: 2012-12-28 09:50:28


Version Info:

Comments: 
CompanyName: Microsoft Corporation
FileDescription: LanguagePack
FileVersion: 5, 1, 2600, 5512
InternalName: LanguagePack
LegalCopyright: (C) Microsoft Corporation. All rights reserved.
LegalTrademarks: 
OriginalFilename: LanguagePack
PrivateBuild: 
ProductName: Microsoft(C) Windows(C) Operating System
ProductVersion: 5, 1, 2600, 5512
SpecialBuild: 
Translation: 0x0409 0x04b0

TrojanDropper:Win32/Floxif!pz also known as:

BkavW32.AIDetectMalware
Elasticmalicious (moderate confidence)
MicroWorld-eScanGen:Trojan.Heur.fmUfym9CVcjb
CAT-QuickHealTrojan.Floxif.8475
McAfeeArtemis!01FCA9638E11
K7AntiVirusTrojan ( 001a5abb1 )
K7GWTrojan ( 001a5abb1 )
CrowdStrikewin/malicious_confidence_100% (D)
BitDefenderThetaAI:Packer.3A63C9351C
VirITTrojan.Win32.Generic.WDD
SymantecW32.Fixflo.B
tehtrisGeneric.Malware
ESET-NOD32a variant of Win32/Floxif.E
APEXMalicious
CynetMalicious (score: 100)
AlibabaRootkit:Win32/Floxif.12e9cc2b
NANO-AntivirusVirus.Win32.Infector.bpfazg
SUPERAntiSpywareTrojan.Agent/Gen-MSFake
AvastWin32:FloxLib-A [Trj]
F-SecureTrojan.TR/Crypt.XDR.Gen
DrWebWin32.FloodFix
ZillyaTrojan.Floxif.Win32.1
SophosMal/Behav-160
SentinelOneStatic AI – Suspicious PE
JiangminTrojan/Generic.bjchb
WebrootW32.Trojan.Gen
VaristW32/Fixflo.A.gen!Eldorado
AviraTR/Crypt.XDR.Gen
Antiy-AVLTrojan/Win32.Floxif
XcitiumTrojWare.Win32.Agent.ADFZ@524ego
ArcabitTrojan.Heur.fmUfym9CVcjb
ZoneAlarmUDS:Rootkit.Win32.Small.bse
MicrosoftTrojanDropper:Win32/Floxif!pz
GoogleDetected
AhnLab-V3Trojan/Win32.Gen
VBA32TScope.Malware-Cryptor.SB
ALYacGen:Trojan.Heur.fmUfym9CVcjb
MAXmalware (ai score=89)
Cylanceunsafe
PandaTrj/Genetic.gen
RisingVirus.Floxif!1.9BE8 (CLASSIC)
YandexTrojan.Siggen!lKcK9ec7lQc
IkarusVirus.Win32.Agent
FortinetW32/Floxif.E
AVGWin32:FloxLib-A [Trj]
DeepInstinctMALICIOUS

How to remove TrojanDropper:Win32/Floxif!pz?

TrojanDropper:Win32/Floxif!pz removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment