plugx | aae9d237d61c8bb39c0b3065bead10b0760154c8ecb783cfffee3e215ed447e5 | Triage

Sharing

General

Target

Ryujinx.exe
Size

44.3MB
Sample

230127-bqjdkahe3s
MD5

e7d755bc20d8ff414197f1f569739b1a
SHA1

de59c61eacaa631bfe3b4d529f94d7e477e17d0d
SHA256

aae9d237d61c8bb39c0b3065bead10b0760154c8ecb783cfffee3e215ed447e5
SHA512

1ce65b4b81756ed08e0c47b0b7402d1f2aea41c1edbbe30b623af2a4e0e0fe35abd588b44c8f75dd93b1e4137985ff9214612fbd11fc47aea3da36d015a18f09
SSDEEP

196608:HCJfrFyrm3hgLYAVuSnGZxOeeB3s4tkksk6LdsAVwleOrmbW/0tRyxZOX7EbVTiD:i9rYq3hg8TzYkTJsAVeewKBmTEL5mQMc

Score

10^/10

plugx

Malware Config

Targets

- Target
  
  Ryujinx.exe
- Size
  
  44.3MB
- MD5
  
  e7d755bc20d8ff414197f1f569739b1a
- SHA1
  
  de59c61eacaa631bfe3b4d529f94d7e477e17d0d
- SHA256
  
  aae9d237d61c8bb39c0b3065bead10b0760154c8ecb783cfffee3e215ed447e5
- SHA512
  
  1ce65b4b81756ed08e0c47b0b7402d1f2aea41c1edbbe30b623af2a4e0e0fe35abd588b44c8f75dd93b1e4137985ff9214612fbd11fc47aea3da36d015a18f09
- SSDEEP
  
  196608:HCJfrFyrm3hgLYAVuSnGZxOeeB3s4tkksk6LdsAVwleOrmbW/0tRyxZOX7EbVTiD:i9rYq3hg8TzYkTJsAVeewKBmTEL5mQMc
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2