Triage | Malware sandboxing report by Hatching Triage

Sharing

General

Target

1f7ce43b4cd2e523ae2d979f12d375c2c0b637a4a960a470bd30e793712080e4
Size

912KB
Sample

221022-zprkjsefe7
MD5

452c2ac239e6e432b6ba107041e3a489
SHA1

0603a85561b66f4651e592ef04673d31585672ac
SHA256

1f7ce43b4cd2e523ae2d979f12d375c2c0b637a4a960a470bd30e793712080e4
SHA512

5b432b4d3189b4671e5e623cf523441bdd1abee95b3cd11839e8e30f0453b61ab8e6115805f8593912619031fad2674fcecef630995c4daa8eb48d63ea2496dc
SSDEEP

12288:959c/ygD9wR9BAYQhw2izuT7kNsq71QFwqOvlp7Xf6I9T7/Min:9j8wR9CYQmuTk76FYlp7XfJpn

Score

10^/10

purplefox rootkit trojan

Malware Config

Targets

- Target
  
  1f7ce43b4cd2e523ae2d979f12d375c2c0b637a4a960a470bd30e793712080e4
- Size
  
  912KB
- MD5
  
  452c2ac239e6e432b6ba107041e3a489
- SHA1
  
  0603a85561b66f4651e592ef04673d31585672ac
- SHA256
  
  1f7ce43b4cd2e523ae2d979f12d375c2c0b637a4a960a470bd30e793712080e4
- SHA512
  
  5b432b4d3189b4671e5e623cf523441bdd1abee95b3cd11839e8e30f0453b61ab8e6115805f8593912619031fad2674fcecef630995c4daa8eb48d63ea2496dc
- SSDEEP
  
  12288:959c/ygD9wR9BAYQhw2izuT7kNsq71QFwqOvlp7Xf6I9T7/Min:9j8wR9CYQmuTk76FYlp7XfJpn
Score

10^/10

purplefox rootkit trojan
- Detect PurpleFox Rootkit
  Detect PurpleFox Rootkit.
  rootkit
- PurpleFox
  PurpleFox is an exploit kit used to distribute other malware families and first seen in 2018.
  rootkit trojan purplefox
behavioral1 behavioral2

MITRE ATT&CK Matrix

Collection

Command and Control

Credential Access

Defense Evasion

Discovery

Execution

Exfiltration

Impact

Initial Access

Lateral Movement

Persistence

Privilege Escalation

Tasks

static1

behavioral1

purplefoxrootkittrojan

behavioral2

purplefoxrootkittrojan