plugx | d94f7339adc602aa67859fe8532cc87cc6f131af885ad678795490b1cf98fc8e | Triage

Submit
Reports

Overview

overview

Static

static

d94f7339ad...8e.exe

windows7_x64

Sharing

General

Target

d94f7339adc602aa67859fe8532cc87cc6f131af885ad678795490b1cf98fc8e
Size

579KB
Sample

220519-ephmesahc7
MD5

0bc6098d03c4faeb17dcf633f5de4652
SHA1

4c7912cfcab3fd03413110e7d428981aca5e0331
SHA256

d94f7339adc602aa67859fe8532cc87cc6f131af885ad678795490b1cf98fc8e
SHA512

03a25ce05b3d112c2c3fcd5a67bd65b7f02c1a4abc2bf7203a8ea44d6fe5d1703b08da87ddde1ab7ca3f3283e31fd870d7a8dcace03ffb0067c99272bd1374be

Score

10^/10

plugx trojan

Static task

static1

Behavioral task

behavioral1

Sample

d94f7339adc602aa67859fe8532cc87cc6f131af885ad678795490b1cf98fc8e.exe

Resource

win7-20220414-en

windows7_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  d94f7339adc602aa67859fe8532cc87cc6f131af885ad678795490b1cf98fc8e
- Size
  
  579KB
- MD5
  
  0bc6098d03c4faeb17dcf633f5de4652
- SHA1
  
  4c7912cfcab3fd03413110e7d428981aca5e0331
- SHA256
  
  d94f7339adc602aa67859fe8532cc87cc6f131af885ad678795490b1cf98fc8e
- SHA512
  
  03a25ce05b3d112c2c3fcd5a67bd65b7f02c1a4abc2bf7203a8ea44d6fe5d1703b08da87ddde1ab7ca3f3283e31fd870d7a8dcace03ffb0067c99272bd1374be
Score

10^/10

plugx trojan
- Detects Talisman variant of PlugX
- PlugX
  PlugX is a RAT (Remote Access Trojan) that has been around since 2008.
  trojan plugx
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy