Overview

overview

10

Static

static

9257e63485...2b.exe

windows7-x64

10

9257e63485...2b.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9257e634859e8b982e6d95ba3612a1c39b0ec4d4de50fa9df3febba40be8532b

  • Size

    4.2MB

  • Sample

    220911-zrbxwafhep

  • MD5

    8ddf424a0b08ade1b8556b91dd382dc1

  • SHA1

    39401064c152f8b8a9df2588c585df22582afecd

  • SHA256

    9257e634859e8b982e6d95ba3612a1c39b0ec4d4de50fa9df3febba40be8532b

  • SHA512

    3689e3565db4d3b34fe7def4c93aa3e0351ce181eef819c1d9609505dc05e10ae398def3479e93772be0f685ad91603e2c47ea33c876f1f58beb0dcbb76c9c87

  • SSDEEP

    98304:LzOmUh3U9elPk+bHtYtRYN5v8ebnnZ4+MRc/EtDqgVFVVFK:+FhKd+a25vXnZdUcskglT

Score
10/10
purplefoxrootkittrojan

Malware Config

Targets

    • Target

      9257e634859e8b982e6d95ba3612a1c39b0ec4d4de50fa9df3febba40be8532b

    • Size

      4.2MB

    • MD5

      8ddf424a0b08ade1b8556b91dd382dc1

    • SHA1

      39401064c152f8b8a9df2588c585df22582afecd

    • SHA256

      9257e634859e8b982e6d95ba3612a1c39b0ec4d4de50fa9df3febba40be8532b

    • SHA512

      3689e3565db4d3b34fe7def4c93aa3e0351ce181eef819c1d9609505dc05e10ae398def3479e93772be0f685ad91603e2c47ea33c876f1f58beb0dcbb76c9c87

    • SSDEEP

      98304:LzOmUh3U9elPk+bHtYtRYN5v8ebnnZ4+MRc/EtDqgVFVVFK:+FhKd+a25vXnZdUcskglT

    Score
    10/10
    purplefoxrootkittrojan

    • Detect PurpleFox Rootkit

      Detect PurpleFox Rootkit.

      rootkit

    • PurpleFox

      PurpleFox is an exploit kit used to distribute other malware families and first seen in 2018.

      rootkittrojanpurplefox

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

2
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks