plugx | 721ff308a706259c674adbd7c1606f5d5636674dc372ab739f1224e0be06184a | Triage

Submit
Reports

Overview

overview

Static

static

1

t/Smadav.exe

windows10-1703-x64

Sharing

General

Target

t.zip
Size

264KB
Sample

230215-rdbqysbh2s
MD5

3c3458fa987a02e8828ba3be85ecfb25
SHA1

8644748ea6189430b334bf6816e5ba01ea2c74de
SHA256

721ff308a706259c674adbd7c1606f5d5636674dc372ab739f1224e0be06184a
SHA512

e642de12271a7d69c4ddbfe5f960831d7ab65d0ed20b68bd810d25777817a945f06a67aca067734b900b4da9fc6237d7a9fce880bce2b3387c561bd5367ce1f3
SSDEEP

6144:/OZ9JTnmx8HSipHM7sQVNHaBcjjPPy/kAWB6C9ogmWrmSjOGAHaEhen:mZ9J6xVlVNHOKDPKkAKogvrQGgaEy

Score

10^/10

plugx trojan

Static task

static1

Behavioral task

behavioral1

Sample

t/Smadav.exe

Resource

win10-20220812-en

windows10-1703-x64

11 signatures

300 seconds

Malware Config

Targets

- Target
  
  t/Smadav.exe
- Size
  
  77KB
- MD5
  
  b830cd1b49bd31bcdb6192c20cf0b141
- SHA1
  
  b9629fdd735956772e9a3ceedcdb829bba6f8a43
- SHA256
  
  21d34a02ec28e9bd6f7b2f96ac7921f5ef08d291416b38a3fc8cf651f11fc820
- SHA512
  
  0ffef5b2681e57d3586b878bbf174a667423cd30e75a7f4ef60910922b2f9e3e02af309a7c3f15b70a42b747445513df43ce651dcb85bec7b94bfed6a7704ccd
- SSDEEP
  
  1536:NF81hiRzGLSNegJYJoUP8MXTi9Xtr835XoR66E:NFsGGLalYJoDDx835XoRe
Score

10^/10

plugx trojan
- Detects PlugX payload
- PlugX
  PlugX is a RAT (Remote Access Trojan) that has been around since 2008.
  trojan plugx
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy