Overview

overview

10

Static

static

80deed939a...in.exe

windows7_x64

1

80deed939a...in.exe

windows10_x64

10

Resubmissions

26-04-2022 23:36

220426-3lkvdaegb6 10

28-02-2022 15:52

220228-tbeqyagaar 10

24-02-2022 11:16

220224-ndfs5aebfn 9

27-07-2021 22:10

210727-kkvgchhhls 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    80deed939a520696968335d1bb2a9fcce7053c0156f679ba261824d0a2d44967.bin

  • Size

    426KB

  • Sample

    210727-kkvgchhhls

  • MD5

    048271f7f2f8d900485dd020cdea2dd9

  • SHA1

    fc48ae44addc9e1d00238f5ba798f3876e69c561

  • SHA256

    80deed939a520696968335d1bb2a9fcce7053c0156f679ba261824d0a2d44967

  • SHA512

    aa21ba3fde629857934140fb96737189602242222f4f26d7a9b28f28c52a4bc91c046eaaaf11472c2f73ff126697d6e57a2b3d36bf84ed17d3c80e9c629ea5df

Score
10/10
plugxtrojanupx

Malware Config

Targets

    • Target

      80deed939a520696968335d1bb2a9fcce7053c0156f679ba261824d0a2d44967.bin

    • Size

      426KB

    • MD5

      048271f7f2f8d900485dd020cdea2dd9

    • SHA1

      fc48ae44addc9e1d00238f5ba798f3876e69c561

    • SHA256

      80deed939a520696968335d1bb2a9fcce7053c0156f679ba261824d0a2d44967

    • SHA512

      aa21ba3fde629857934140fb96737189602242222f4f26d7a9b28f28c52a4bc91c046eaaaf11472c2f73ff126697d6e57a2b3d36bf84ed17d3c80e9c629ea5df

    Score
    10/10
    plugxtrojanupx

    • PlugX

      PlugX is a RAT (Remote Access Trojan) that has been around since 2008.

      trojanplugx

    • PlugX Rat Payload

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks