ploutus | 9f83690b4ba738a40f8993645d5d02d3fda46041bf93a97cbde487fe09e3bb86

Sharing

Copy URL

Twitter E-mail

General

Target

NucleusApp.zip
Size

82.7MB
Sample

240617-dy1nxswemn
MD5

5f3a75fec16233a6074e7a43e29a2145
SHA1

e2ffd4d43120a828778b7ce27fdf0a938215f75b
SHA256

9f83690b4ba738a40f8993645d5d02d3fda46041bf93a97cbde487fe09e3bb86
SHA512

0594158c7a1629f0e5450b1532d40418a9fffada877d6746468e48691bcc0cc4631aa0e5d69ea2de259acab968d4f43267ced0d1e23944d005dd89e2beac0bf4
SSDEEP

1572864:wNwiTiWW1A9y7pwZj/Lt5hKUwqWPTyMT3gYi5yvp5dVPIImiGFv7vrY9MmT:whieYlwV/p5iqOzNvbPILhDmMmT

Score

10^/10

ploutus

Malware Config

Targets

- Target
  
  NucleusApp.zip
- Size
  
  82.7MB
- MD5
  
  5f3a75fec16233a6074e7a43e29a2145
- SHA1
  
  e2ffd4d43120a828778b7ce27fdf0a938215f75b
- SHA256
  
  9f83690b4ba738a40f8993645d5d02d3fda46041bf93a97cbde487fe09e3bb86
- SHA512
  
  0594158c7a1629f0e5450b1532d40418a9fffada877d6746468e48691bcc0cc4631aa0e5d69ea2de259acab968d4f43267ced0d1e23944d005dd89e2beac0bf4
- SSDEEP
  
  1572864:wNwiTiWW1A9y7pwZj/Lt5hKUwqWPTyMT3gYi5yvp5dVPIImiGFv7vrY9MmT:whieYlwV/p5iqOzNvbPILhDmMmT
Score

1^/10
behavioral1 behavioral2
- Target
  
  EasyHook.dll
- Size
  
  51KB
- MD5
  
  1125599eb9fdc1c3401edb4e9827a953
- SHA1
  
  9d60451db256cf4f8955e80c8a225a686dc61a64
- SHA256
  
  df58e7a3f6423dd8aa6e95867f59691845672a5884be2d4d28257c5c931fff0e
- SHA512
  
  856c2623b068c39f3a9555becc68af127c7e769da5d72ed7541b1984eabd3680c01a17c7f5ce37f87fed2b811bb340cc128bb9a586431a9b31d70f3e006d358d
- SSDEEP
  
  768:tfS88EkyREho0Mi9to3PlZJVAdB0oPKWz+9C+ab0d++XyC3NaRkuZl8R:tUEEa0MYtyZJVAd6zCvbq+GwRG
Score

1^/10
behavioral3 behavioral4
- Target
  
  EasyHook32.dll
- Size
  
  289KB
- MD5
  
  e646a64fd89411e72122ad17fcaa3f2a
- SHA1
  
  a7293fe9231e1e0ce2f67108d0109c89bf747544
- SHA256
  
  aab29d771bdb8c600b4df654de2d6832cda259dc3f4955b2c697db30fd151817
- SHA512
  
  134515adef961b1ce78d756b7b7d0e59cc99f744048a4d9617d62439be6d75121647adc01605647f352112fea1b77dc9b38292dd79bf8524f770f386f37ba693
- SSDEEP
  
  6144:ooQRqNwYXlrx5xZk2OusDJ2e/5tmlxAVswXz8EaLQ:ooQRqNwYXj5xdOusDJ2e/5tGxAVswXaQ
Score

3^/10
behavioral5 behavioral6
- Target
  
  EasyHook32Svc.exe
- Size
  
  8KB
- MD5
  
  642338e293ae96e6f43a003b7c5041aa
- SHA1
  
  b610830981b76883d477ef3f43546e4460bd8f75
- SHA256
  
  65492608f5da52ed8d5b6f9360b6d9792456802e6fb03adf38656223501a923a
- SHA512
  
  efa34dc88ccf73418b78121721eaa1c26865b30dc36e953d4ac5c74af3b2a8caa9fbdf0fc681b966e297309e262caa4b78139a161850b3d1277fc302fe4f2eb4
- SSDEEP
  
  192:qfbEkWW2wQ9bLcK9xs3+ETZrOnVSuGWFsClKHGzF:6b4HH9btfs3+ElrG06sClKmz
Score

1^/10
behavioral7 behavioral8
- Target
  
  EasyHook64.dll
- Size
  
  346KB
- MD5
  
  f8243afb8dc94d1bd47f25e524847104
- SHA1
  
  30b33dacc2228f597d7480e0f26f9279a0f3aa8b
- SHA256
  
  04f967d77dba69d8369218a2ae316c210749f0b1279ac563d8d281dea7b8c6e4
- SHA512
  
  a07802ee45b03b1a446931b86b9c5ff7aed4fa6e60d68e76679f5f1edc7f9c46c2fcc0cc2c1ea6af8b768f90e311a9e052408cde1aa51b039bd429ab9159a5c8
- SSDEEP
  
  3072:5S8LmKVNHVerrFxU52RW5eDOPIRTBjcRZEEk1nRtO0dxGUve5xEtFWrZ3Ta5Q3:tCKDHCPNW5aU2OsEk1nnYAP5
Score

1^/10
behavioral10 behavioral9
- Target
  
  EasyHook64Svc.exe
- Size
  
  8KB
- MD5
  
  a769c48087512d942b9461c2ad292295
- SHA1
  
  37d0df5603a6b7b591e6f4f9345f2fd2118da828
- SHA256
  
  361a8652870dfc554f2ef6d87c517a3c50770b90bc06e9d44b06d2005dd67bcd
- SHA512
  
  b46aa8de3aafcb920f44e88c84dc55729366d067b56c52f9bb57e34fd33a3ae61566606c9bb02da2c879fec801fc0cb37ce355f1dfc42d076e7b15be0d5094e2
- SSDEEP
  
  192:WfbEkWW2wQ9bLcK9xs3+ETZrOtVSuG3f+lMXGzF:+b4HH9btfs3+ElrA0Xf+lM2z
Score

1^/10
behavioral11 behavioral12
- Target
  
  EasyHookSvc.exe
- Size
  
  8KB
- MD5
  
  642338e293ae96e6f43a003b7c5041aa
- SHA1
  
  b610830981b76883d477ef3f43546e4460bd8f75
- SHA256
  
  65492608f5da52ed8d5b6f9360b6d9792456802e6fb03adf38656223501a923a
- SHA512
  
  efa34dc88ccf73418b78121721eaa1c26865b30dc36e953d4ac5c74af3b2a8caa9fbdf0fc681b966e297309e262caa4b78139a161850b3d1277fc302fe4f2eb4
- SSDEEP
  
  192:qfbEkWW2wQ9bLcK9xs3+ETZrOnVSuGWFsClKHGzF:6b4HH9btfs3+ElrG06sClKmz
Score

1^/10
behavioral13 behavioral14
- Target
  
  Ionic.Zip.Reduced.dll
- Size
  
  247KB
- MD5
  
  7c359500407dd393a276010ab778d5af
- SHA1
  
  4d63d669b73acaca3fc62ec263589acaaea91c0b
- SHA256
  
  a4009288982e4c30d22b544167f72db882e34f0fda7d4061b2c02c84688c0ed1
- SHA512
  
  88a25138d0a491e5ee27499206e05b8c501da0c73ad2b3e23d70e810a09bfc1b701817de7f22c9f0b9f81f90235fe5eeadd112773035a11f01706eac364b34bc
- SSDEEP
  
  3072:nrI52ReHNdAFnfPPShREuMPb9YlVVRxpop2i0KKCXrXSbS4KcMy8ZZL5QlcSCSLw:yNdA+Myl7TpNiWCL4EycZb4
Score

1^/10
behavioral15 behavioral16
- Target
  
  Jint.dll
- Size
  
  244KB
- MD5
  
  734c5ce8f9b104d8ad3c7b494e96f9b9
- SHA1
  
  184cd4152b1b65d9531867b06c2e1c215fb872f1
- SHA256
  
  ed618668ae9e7c02c7c2b7332dd09079168cca96432a051044683c996337001c
- SHA512
  
  1e3ac0649e3b7bf9e97681aa7b1346aa44afe96d8c86fc77a6e002b8cf5b14b1a57f19f669ed0d4ae9a94d3f65d4eefa99dcffcf5d74afc8731f913c9c9f79d6
- SSDEEP
  
  3072:hE1DupDOGfyKkpsZa27k5t0f5jjBWV239UDjRFAkqYL36ZmvYYGUaKTUCRaikNrJ:hjyQlGunmvjPa2vRQrXPHNQHsq5+L
Score

1^/10
behavioral17 behavioral18
- Target
  
  NAudio.dll
- Size
  
  501KB
- MD5
  
  047bca47d9d12191811fb2e87cded3aa
- SHA1
  
  afdc5d27fb919d1d813e6a07466f889dbc8c6677
- SHA256
  
  bc4bacc3b8b28d898f1671b79f216cca439f95eb60cd32d3e3ecafbecac42780
- SHA512
  
  99505644d42e4c60c977e4144165ea9dea8f1301e6456aa809e046ecc84a3813a190ce65169a6ffef5a36ad3541ec91002615a02933f8deb642aa3f8f3b11f2f
- SSDEEP
  
  12288:YnfnRe200wJT4WQ+NOStYVlJHMGwH7fu:ODIrQ+NOS2HMGwHT
Score

1^/10
behavioral19 behavioral20
- Target
  
  Newtonsoft.Json.dll
- Size
  
  695KB
- MD5
  
  195ffb7167db3219b217c4fd439eedd6
- SHA1
  
  1e76e6099570ede620b76ed47cf8d03a936d49f8
- SHA256
  
  e1e27af7b07eeedf5ce71a9255f0422816a6fc5849a483c6714e1b472044fa9d
- SHA512
  
  56eb7f070929b239642dab729537dde2c2287bdb852ad9e80b5358c74b14bc2b2dded910d0e3b6304ea27eb587e5f19db0a92e1cbae6a70fb20b4ef05057e4ac
- SSDEEP
  
  12288:GBja5bBvR8Q0TE2HB0WLmvXbsVG1Gw03RzxNHgKhwFBkjSHXP36RMGy1NqTUO:GBjk38WuBcAbwoA/BkjSHXP36RMG/
Score

1^/10
behavioral21 behavioral22
- Target
  
  Nucleus.Gaming.dll
- Size
  
  4.7MB
- MD5
  
  45444160efad31767d709a46740b6620
- SHA1
  
  121e1ba87d3e2083d3a94e270e407370f5629612
- SHA256
  
  722ec6431e14035a14c4a214fb50543a3032f2673fdb0b665057807fc47255e1
- SHA512
  
  f54847d7d7c7eb0172da9e4e0bc67b2e0325e04a2a55f3dd77ff41e358cc615993bca38d7a7b164ef0de5bd70b1e20502d9161620389fb5cc959be8ce9877b24
- SSDEEP
  
  49152:GFW3lgRnkyRnkyRnkyRnkGTv7UEn5dWOxVvSDedn5dT6w0a2C01w7wGm+B00/Yvj:Pa6y6y6y6GX/n53aKn5/0a/L//Yhmn
Score

1^/10
behavioral23 behavioral24
- Target
  
  Nucleus.Hook32.dll
- Size
  
  204KB
- MD5
  
  60cf4a67d7b291f96deb0c25abc45136
- SHA1
  
  a7cd4d1bc767dcc365e311d9a0b2012ba40f83df
- SHA256
  
  4b8fc9cd0679a3a61bd8adca793e23d2caa60fa0663091afd9846f32f247e622
- SHA512
  
  b87742ae95e77ba0fad844f4c868e3031d834ccad00e9e555103c71bf0a4de707d0a121958aa088ae547020adef9f1b99dfd4dedabf43c07d5ab6f16f4dfbf86
- SSDEEP
  
  3072:U/2dVVPsB3Q9/xokMRuCfn94nPFYRiXGJmZB5tBnnqOqrkZAg0Fuj0JYBK4:UubV1FxoL1nGPFY4XiE5tBHAO7K4
Score

3^/10
behavioral25 behavioral26
- Target
  
  Nucleus.Hook64.dll
- Size
  
  255KB
- MD5
  
  fcd498167afd34b9c445d4ec4737530e
- SHA1
  
  feebecfe4bad90a8b467cc9d014c85f813228f59
- SHA256
  
  ab2d8988e6c918c1bc4791ec05ea85452eb814749a14424e97ef9c1dda7ea6e0
- SHA512
  
  8a17526fb017947926689d144bc33bda4388764be68a5e1e1d96769122fcf622c5dc7e17b23b9c8dbb09198474a0b9755a83965b5387632ec9cfe15016dac7da
- SSDEEP
  
  6144:nwANuq9lRoRPWNDl+PxQZUmgohgE72c1Y2nvEc:nw89oIlyDof/vE
Score

1^/10
behavioral27 behavioral28
- Target
  
  Nucleus.IJx64.exe
- Size
  
  13KB
- MD5
  
  45dc0f1fe131b7fe92cbbb22127f2bcd
- SHA1
  
  70d2890da462fdbc3f69477ebe970d8dfdbd9cb5
- SHA256
  
  b5563e2e74f4c1771e3dd30ff4b1f4d2aa077f27f9c844bd78b2b9a376842463
- SHA512
  
  76c3c9f3e4716bcc923f81f7af531e3a5e1409a158eb20c5d31e00fd668a33a445e7e81f8aed6c0e7bcce47de2ff567c5c117a921b3c0af70da2744e7c88c5d8
- SSDEEP
  
  192:YDFZNxUOACjGJGKP8b8uWZ0ZSfvaoqNlS8IinshWK1D+bfx/fr1:YxxUOACjaGKPOm0ZUaocEVhWCy3
Score

1^/10
behavioral29 behavioral30
- Target
  
  Settings.ini
- Size
  
  2KB
- MD5
  
  0db82c2c60752e1de33d67d17b62b552
- SHA1
  
  a61d92a9f346e0f78324f1e3e2853502ed484707
- SHA256
  
  e4c0dc067261c6fbe975a749601b5130646f2bc21e40d841288997a661536852
- SHA512
  
  610fda9d87a829d70d770a4941232828f5ba0a2a8e908cbd545de36165b447deede3334c7a55012141585cb74467c5775bb5edf8b23ed36d936f6fe921058374
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32