plugx | 6dbe565349ee5e8e2acc827ba34d82dd76e37f819dc9618902906ecd9d43d953 | Triage

Submit
Reports

Overview

overview

Static

static

1

dridex

windows10-2004_x64

Sharing

General

Target

6dbe565349ee5e8e2acc827ba34d82dd76e37f819dc9618902906ecd9d43d953
Size

64.4MB
Sample

220329-kex71sghem
MD5

028995dd1c2fef9d3d2670d681240a16
SHA1

3d9f44d18412e37ee80a9a392b5192623dd07a8b
SHA256

6dbe565349ee5e8e2acc827ba34d82dd76e37f819dc9618902906ecd9d43d953
SHA512

0aa547dec1fc0e5560db8559ce0f9b7c54dcb4d3a32eabc88c4d4d9168324545cef6730a38d9b1466d3d8b3ee198ddcd8c20c0c8f3490fc096c59fcb7076e574

Score

10^/10

plugx discovery persistence trojan

Static task

static1

Behavioral task

behavioral1

Sample

6dbe565349ee5e8e2acc827ba34d82dd76e37f819dc9618902906ecd9d43d953.exe

Resource

win10v2004-en-20220113

plugx discovery persistence trojan

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  6dbe565349ee5e8e2acc827ba34d82dd76e37f819dc9618902906ecd9d43d953
- Size
  
  64.4MB
- MD5
  
  028995dd1c2fef9d3d2670d681240a16
- SHA1
  
  3d9f44d18412e37ee80a9a392b5192623dd07a8b
- SHA256
  
  6dbe565349ee5e8e2acc827ba34d82dd76e37f819dc9618902906ecd9d43d953
- SHA512
  
  0aa547dec1fc0e5560db8559ce0f9b7c54dcb4d3a32eabc88c4d4d9168324545cef6730a38d9b1466d3d8b3ee198ddcd8c20c0c8f3490fc096c59fcb7076e574
Score

10^/10

plugx discovery persistence trojan
- PlugX
  PlugX is a RAT (Remote Access Trojan) that has been around since 2008.
  trojan plugx
- PlugX Rat Payload
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

plugxdiscoverypersistencetrojan

© 2018-2024

Terms | Privacy