purplefox | 3b393524cddfaecb8f3a3efdbae5ba3de84e8154e88055c6feb1c4edc5602f5a | Triage

Submit
Reports

Overview

overview

Static

static

3b393524cd...5a.dll

windows7-x64

3b393524cd...5a.dll

windows10-2004-x64

Sharing

General

Target

3b393524cddfaecb8f3a3efdbae5ba3de84e8154e88055c6feb1c4edc5602f5a
Size

169KB
Sample

240419-bl2dksdd3w
MD5

25bdbff8e89fffc3b44610aa6a69d68c
SHA1

984087ffaa1fa90c2c5752859cd157946c8a5b62
SHA256

3b393524cddfaecb8f3a3efdbae5ba3de84e8154e88055c6feb1c4edc5602f5a
SHA512

3cf4940231543856ac6157f66f8f129e091baa81a574a33a6a5fc69425fd136f7eb062cac08863dbdfdaf94534253185876e58f2dc95285c305f7b9555b5cd1c
SSDEEP

3072:NKXVS7qs7WK8DCkkRB9cFM2dSBxOXpNfSfqUi65LPJi3jaEsplN7kiIw3:d7qs7WK8DKRQe0SBMX/SfXB1YKkiIw3

Score

10^/10

purplefox rootkit trojan upx

Static task

static1

upx rootkit purplefox

5 signatures

Behavioral task

behavioral1

Sample

3b393524cddfaecb8f3a3efdbae5ba3de84e8154e88055c6feb1c4edc5602f5a.dll

Resource

win7-20240221-en

purplefox rootkit trojan upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

3b393524cddfaecb8f3a3efdbae5ba3de84e8154e88055c6feb1c4edc5602f5a.dll

Resource

win10v2004-20240412-en

purplefox rootkit trojan upx

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  3b393524cddfaecb8f3a3efdbae5ba3de84e8154e88055c6feb1c4edc5602f5a
- Size
  
  169KB
- MD5
  
  25bdbff8e89fffc3b44610aa6a69d68c
- SHA1
  
  984087ffaa1fa90c2c5752859cd157946c8a5b62
- SHA256
  
  3b393524cddfaecb8f3a3efdbae5ba3de84e8154e88055c6feb1c4edc5602f5a
- SHA512
  
  3cf4940231543856ac6157f66f8f129e091baa81a574a33a6a5fc69425fd136f7eb062cac08863dbdfdaf94534253185876e58f2dc95285c305f7b9555b5cd1c
- SSDEEP
  
  3072:NKXVS7qs7WK8DCkkRB9cFM2dSBxOXpNfSfqUi65LPJi3jaEsplN7kiIw3:d7qs7WK8DKRQe0SBMX/SfXB1YKkiIw3
Score

10^/10

purplefox rootkit trojan upx
- Detect PurpleFox Rootkit
  Detect PurpleFox Rootkit.
  rootkit
- PurpleFox
  PurpleFox is an exploit kit used to distribute other malware families and first seen in 2018.
  rootkit trojan purplefox
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

upxrootkitpurplefox

behavioral1

purplefoxrootkittrojanupx

behavioral2

purplefoxrootkittrojanupx

© 2018-2024

Terms | Privacy