plugx | dcdaf83e8340a1d97bdf687afb611f6bfdd4e7f46a8be7c83e4fa7c483f90f54 | Triage

Sharing

General

Target

Ryujinx.exe
Size

48.4MB
Sample

230527-z3pccadb63
MD5

85df4f06329e1423d3d863c6bd3a073d
SHA1

d796603e8ba48cbf350bfe435696333d0c033806
SHA256

dcdaf83e8340a1d97bdf687afb611f6bfdd4e7f46a8be7c83e4fa7c483f90f54
SHA512

773077e98fd8a60d6bfa2c6441478571808cad3fa120274a6b303bce2c16129fb18011dbbb43bed98ca6db700d43bd4bfc3c0b9159bbe9d57a12db46ce6a67ef
SSDEEP

393216:2atW17zliNbyRHIMlavMVAvF9zHenSM1gE:TskNy9xmF9z+nSM1gE

Score

10^/10

plugx

Malware Config

Targets

- Target
  
  Ryujinx.exe
- Size
  
  48.4MB
- MD5
  
  85df4f06329e1423d3d863c6bd3a073d
- SHA1
  
  d796603e8ba48cbf350bfe435696333d0c033806
- SHA256
  
  dcdaf83e8340a1d97bdf687afb611f6bfdd4e7f46a8be7c83e4fa7c483f90f54
- SHA512
  
  773077e98fd8a60d6bfa2c6441478571808cad3fa120274a6b303bce2c16129fb18011dbbb43bed98ca6db700d43bd4bfc3c0b9159bbe9d57a12db46ce6a67ef
- SSDEEP
  
  393216:2atW17zliNbyRHIMlavMVAvF9zHenSM1gE:TskNy9xmF9z+nSM1gE
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1