purplefox | 9362bf6ffd3956f58e67f0c0e6d6ae4818384c29039400051cfb6b8ff1717c96 | Triage

Submit
Reports

Overview

overview

Static

static

7

9362bf6ffd...96.exe

windows7-x64

9362bf6ffd...96.exe

windows10-2004-x64

Sharing

General

Target

9362bf6ffd3956f58e67f0c0e6d6ae4818384c29039400051cfb6b8ff1717c96
Size

4.5MB
Sample

230809-zvbraaha7y
MD5

f8fa39cf33a4769e59de95c54089904f
SHA1

f89ab47216e43e7deb1e639324e360d18c671090
SHA256

9362bf6ffd3956f58e67f0c0e6d6ae4818384c29039400051cfb6b8ff1717c96
SHA512

46ab9bc7ff697fdf4c5ba9148df07ac7d290f82658acc37acc7e2cbfef6eefe03a155ea51959f984dbe1fc87f3bc6250d272f05d3fc31cbb54c982477e03fd9e
SSDEEP

98304:50aXoeSvJGvXMvURUC4lo2ywdwkKVHiJvQ/G0Jd7nxfFPK0NvRtB:ivJgXYUaCYoxwdw5VH8vQ/9Jd7nxfFPh

Score

10^/10

purplefox rootkit trojan upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

9362bf6ffd3956f58e67f0c0e6d6ae4818384c29039400051cfb6b8ff1717c96.exe

Resource

win7-20230712-en

purplefox rootkit trojan upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

9362bf6ffd3956f58e67f0c0e6d6ae4818384c29039400051cfb6b8ff1717c96.exe

Resource

win10v2004-20230703-en

purplefox rootkit trojan upx

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  9362bf6ffd3956f58e67f0c0e6d6ae4818384c29039400051cfb6b8ff1717c96
- Size
  
  4.5MB
- MD5
  
  f8fa39cf33a4769e59de95c54089904f
- SHA1
  
  f89ab47216e43e7deb1e639324e360d18c671090
- SHA256
  
  9362bf6ffd3956f58e67f0c0e6d6ae4818384c29039400051cfb6b8ff1717c96
- SHA512
  
  46ab9bc7ff697fdf4c5ba9148df07ac7d290f82658acc37acc7e2cbfef6eefe03a155ea51959f984dbe1fc87f3bc6250d272f05d3fc31cbb54c982477e03fd9e
- SSDEEP
  
  98304:50aXoeSvJGvXMvURUC4lo2ywdwkKVHiJvQ/G0Jd7nxfFPK0NvRtB:ivJgXYUaCYoxwdw5VH8vQ/9Jd7nxfFPh
Score

10^/10

purplefox rootkit trojan upx
- Detect PurpleFox Rootkit
  Detect PurpleFox Rootkit.
  rootkit
- PurpleFox
  PurpleFox is an exploit kit used to distribute other malware families and first seen in 2018.
  rootkit trojan purplefox
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

purplefoxrootkittrojanupx

behavioral2

purplefoxrootkittrojanupx

© 2018-2024

Terms | Privacy