ploutus | c342dae78334189e381bbd4ad2ca0800cd4ad5e58036cf97210b37edab08514b | Triage

Submit
Reports

Overview

overview

Static

static

3

lxautold.exe

windows7-x64

lxautold.exe

windows10-2004-x64

Sharing

General

Target

c342dae78334189e381bbd4ad2ca0800cd4ad5e58036cf97210b37edab08514b
Size

688KB
Sample

231113-vgajvaea8x
MD5

e3c166274afce6f5e8a0dfe1a7ebd745
SHA1

54fca19e2c0d5cd16dc4889bb557bb83538bc5c0
SHA256

c342dae78334189e381bbd4ad2ca0800cd4ad5e58036cf97210b37edab08514b
SHA512

2b74fc8031c6e0398ef20ee30d609b473f63bbe1c0868694aae71568cc1840e831a1f5566cb35550050226096e079efcafb097f8bdd84f26e979cf16efd3bd1c
SSDEEP

12288:2CREz7GbcdInEeYPdWs3DAFDd7QFYmghjjxhgEK+42yJlrX4LP0V0Wfvl6E0c/wD:9R87MDEDdWs3DKqFaHxhbK+4l4LYBN/I

Score

10^/10

ploutus atm backdoor

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

lxautold.exe

Resource

win7-20231020-en

ploutus atm backdoor

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

lxautold.exe

Resource

win10v2004-20231023-en

ploutus atm backdoor

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  lxautold.exe
- Size
  
  765KB
- MD5
  
  f7c83410bdf578a6316d1ce543456dfa
- SHA1
  
  2814ed6a65dec94029a1c1e97b1a69c49b116e34
- SHA256
  
  145d6db252fa4247ad08d85d651bdd6e6ff9068305ce4af3b9dca684f1a1aa5b
- SHA512
  
  fa9c00697cc121421f7fc682b9ce9c78cf9efcec00c6bdc8a8df002462b97319f0bac20c2fa717ceb5985da20b4088232b7f5408192e5031adb0e60047bb5a80
- SSDEEP
  
  12288:7h1Lk70TnvjcRydunMK6PdWmpDCLtdLQF6mghdjxjgEg+gCSrjrDQLXoF0MfF16f:Hk70TrcRxMrdWmpDYOFspxjbg+arQL6S
Score

10^/10

ploutus atm backdoor
- Detected Ploutus loader
- Ploutus
  Ploutus is an ATM malware written in C#.
  backdoor atm ploutus
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

ploutusatmbackdoor

behavioral2

ploutusatmbackdoor

© 2018-2024

Terms | Privacy