plugx | fdbd642cdf151bf3bee32612cc4dcbdf29d2370fa83aaa60f5ed87ec15f44954 | Triage

Resubmissions

30-01-2023 00:16

230130-akx44acb4t 10

Sharing

General

Target

Ryujinx.exe
Size

46.7MB
Sample

230130-akx44acb4t
MD5

81cce4e6f799fc37c134b0f8337554d8
SHA1

75bd1bae158e2fe84b9bf2cab9f8f7f4a2e4cf3b
SHA256

fdbd642cdf151bf3bee32612cc4dcbdf29d2370fa83aaa60f5ed87ec15f44954
SHA512

8b4d8117d9fa36fe74cdc94877439df1e3de9261769a924f6b62437633194ff4493b6ff46291776ea1be629f734cd602d5c1402f3c487e236f266512312b17ab
SSDEEP

196608:kNO2/ZVOoAABOowGwzw+xMyaXemGMtv2kTTYHpGuC9Kmg9W4pzNWuJYjikMK82z9:EjVOo/D4IySzlaBMcU66TbA6Iu3

Score

10^/10

plugx

Malware Config

Targets

- Target
  
  Ryujinx.exe
- Size
  
  46.7MB
- MD5
  
  81cce4e6f799fc37c134b0f8337554d8
- SHA1
  
  75bd1bae158e2fe84b9bf2cab9f8f7f4a2e4cf3b
- SHA256
  
  fdbd642cdf151bf3bee32612cc4dcbdf29d2370fa83aaa60f5ed87ec15f44954
- SHA512
  
  8b4d8117d9fa36fe74cdc94877439df1e3de9261769a924f6b62437633194ff4493b6ff46291776ea1be629f734cd602d5c1402f3c487e236f266512312b17ab
- SSDEEP
  
  196608:kNO2/ZVOoAABOowGwzw+xMyaXemGMtv2kTTYHpGuC9Kmg9W4pzNWuJYjikMK82z9:EjVOo/D4IySzlaBMcU66TbA6Iu3
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2