plugx | 80deed939a520696968335d1bb2a9fcce7053c0156f679ba261824d0a2d44967 | Triage

Submit
Reports

Overview

overview

Static

static

80deed939a...67.exe

windows7_x64

80deed939a...67.exe

windows10_x64

80deed939a...67.exe

windows10-2004_x64

80deed939a...67.exe

windows11_x64

Resubmissions

26-04-2022 23:36

220426-3lkvdaegb6 10

28-02-2022 15:52

220228-tbeqyagaar 10

24-02-2022 11:16

220224-ndfs5aebfn 9

27-07-2021 22:10

210727-kkvgchhhls 10

Sharing

General

Target

80deed939a520696968335d1bb2a9fcce7053c0156f679ba261824d0a2d44967.bin
Size

426KB
Sample

220426-3lkvdaegb6
MD5

048271f7f2f8d900485dd020cdea2dd9
SHA1

fc48ae44addc9e1d00238f5ba798f3876e69c561
SHA256

80deed939a520696968335d1bb2a9fcce7053c0156f679ba261824d0a2d44967
SHA512

aa21ba3fde629857934140fb96737189602242222f4f26d7a9b28f28c52a4bc91c046eaaaf11472c2f73ff126697d6e57a2b3d36bf84ed17d3c80e9c629ea5df

Score

10^/10

plugx trojan upx

Static task

static1

Behavioral task

behavioral1

Sample

80deed939a520696968335d1bb2a9fcce7053c0156f679ba261824d0a2d44967.exe

Resource

win7-20220414-en

plugx trojan upx

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

80deed939a520696968335d1bb2a9fcce7053c0156f679ba261824d0a2d44967.exe

Resource

win10-20220414-en

plugx trojan upx

windows10_x64

0 signatures

0 seconds

Behavioral task

behavioral3

Sample

80deed939a520696968335d1bb2a9fcce7053c0156f679ba261824d0a2d44967.exe

Resource

win10v2004-20220414-en

plugx trojan upx

windows10-2004_x64

0 signatures

0 seconds

Behavioral task

behavioral4

Sample

80deed939a520696968335d1bb2a9fcce7053c0156f679ba261824d0a2d44967.exe

Resource

win11-20220223-en

windows11_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  80deed939a520696968335d1bb2a9fcce7053c0156f679ba261824d0a2d44967.bin
- Size
  
  426KB
- MD5
  
  048271f7f2f8d900485dd020cdea2dd9
- SHA1
  
  fc48ae44addc9e1d00238f5ba798f3876e69c561
- SHA256
  
  80deed939a520696968335d1bb2a9fcce7053c0156f679ba261824d0a2d44967
- SHA512
  
  aa21ba3fde629857934140fb96737189602242222f4f26d7a9b28f28c52a4bc91c046eaaaf11472c2f73ff126697d6e57a2b3d36bf84ed17d3c80e9c629ea5df
Score

10^/10

plugx trojan upx
- Detects PlugX Payload
- PlugX
  PlugX is a RAT (Remote Access Trojan) that has been around since 2008.
  trojan plugx
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
- Unexpected DNS network traffic destination
  Network traffic to other servers than the configured DNS servers was detected on the DNS port.
- Drops file in System32 directory
behavioral1 behavioral2 behavioral3 behavioral4

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

© 2018-2025

Terms | Privacy