Overview

overview

10

Static

static

3de4f547b6...e9.exe

windows7-x64

10

3de4f547b6...e9.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3de4f547b6ef69c9d60c1670d9dc93807eafeb15ffcf510fb1142b552b7214e9

  • Size

    300KB

  • Sample

    221130-t6byjagb95

  • MD5

    1c3fe3ec1148fa72c18e2fcc3cdb354f

  • SHA1

    f13ea2f9ec5442f10f16eece7850e912a0763cbc

  • SHA256

    3de4f547b6ef69c9d60c1670d9dc93807eafeb15ffcf510fb1142b552b7214e9

  • SHA512

    104fd846b6a4019311cd3ded08bac7b5dd907a78d2bfa9f822acd68c377b76b185f2aec4c0fbca37c60028fba15344bd183a719430bd09b787bdc6d07c5b41c0

  • SSDEEP

    6144:7RRRdibg/j76UCWO/RQbIvZlSwNOsRLzMCZfaVAzMCZfNKN:7dn/jZMGbIawhrY

Score
10/10
plugxpersistencetrojan

Malware Config

Targets

    • Target

      3de4f547b6ef69c9d60c1670d9dc93807eafeb15ffcf510fb1142b552b7214e9

    • Size

      300KB

    • MD5

      1c3fe3ec1148fa72c18e2fcc3cdb354f

    • SHA1

      f13ea2f9ec5442f10f16eece7850e912a0763cbc

    • SHA256

      3de4f547b6ef69c9d60c1670d9dc93807eafeb15ffcf510fb1142b552b7214e9

    • SHA512

      104fd846b6a4019311cd3ded08bac7b5dd907a78d2bfa9f822acd68c377b76b185f2aec4c0fbca37c60028fba15344bd183a719430bd09b787bdc6d07c5b41c0

    • SSDEEP

      6144:7RRRdibg/j76UCWO/RQbIvZlSwNOsRLzMCZfaVAzMCZfNKN:7dn/jZMGbIawhrY

    Score
    10/10
    plugxpersistencetrojan

    • Detects PlugX payload

    • PlugX

      PlugX is a RAT (Remote Access Trojan) that has been around since 2008.

      trojanplugx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks