plugx | 120c61968543ca7963a281d188124f2ab369b29857aae59ccf5910a8757dfc9a | Triage

Sharing

General

Target

Ryujinx.exe
Size

48.4MB
Sample

230520-3mdsfshg9t
MD5

16a0a65fc995f7f7242fec9e92e95bfb
SHA1

6f3f390bd4dbda146a2872a7cfab96940802b83d
SHA256

120c61968543ca7963a281d188124f2ab369b29857aae59ccf5910a8757dfc9a
SHA512

95fa830c137984b2d6cd3403238c2e6ac128a0f2c088bbc9b788e8fc483a0c9b4abd16c6f5693469e01f871b752fa91957eed6c51784644328effdd525913c82
SSDEEP

196608:s7at47TJ7z4OW1pBeGx7byuC8a81H54+b7nsq2kTTYHpGuC9Kmg9iKpzNWPOxKY2:2atW17zlitbyoHIMlavM20UpEBi49Gmd

Score

10^/10

plugx

Malware Config

Targets

- Target
  
  Ryujinx.exe
- Size
  
  48.4MB
- MD5
  
  16a0a65fc995f7f7242fec9e92e95bfb
- SHA1
  
  6f3f390bd4dbda146a2872a7cfab96940802b83d
- SHA256
  
  120c61968543ca7963a281d188124f2ab369b29857aae59ccf5910a8757dfc9a
- SHA512
  
  95fa830c137984b2d6cd3403238c2e6ac128a0f2c088bbc9b788e8fc483a0c9b4abd16c6f5693469e01f871b752fa91957eed6c51784644328effdd525913c82
- SSDEEP
  
  196608:s7at47TJ7z4OW1pBeGx7byuC8a81H54+b7nsq2kTTYHpGuC9Kmg9iKpzNWPOxKY2:2atW17zlitbyoHIMlavM20UpEBi49Gmd
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2