plugx | bba7c47c1c2af0a0d54d2c44c3386f54b59874b9c878dfa8fdacf72937770a96 | Triage

Submit
Reports

Overview

overview

Static

static

3

JaffaCakes...13.exe

windows7-x64

JaffaCakes...13.exe

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_608abb0c39949775368837a6c068b113
Size

341KB
Sample

250310-wc8rhssrt7
MD5

608abb0c39949775368837a6c068b113
SHA1

24de091315d67bf66d0a089524d5742c79b90400
SHA256

bba7c47c1c2af0a0d54d2c44c3386f54b59874b9c878dfa8fdacf72937770a96
SHA512

89e843d7f7cb700c35c5bcbcdce6d800e9c6b4ccee3997ec0b38c09b452e3d6edbd638b9e9f520b7fdab4dea7c18a85ad23a94eb257b777e69e504e1dd20cb8f
SSDEEP

6144:VKs+6SrgizF3ndvz9T6LmVgcHBsnsTyXS7xTvOtNbCN0bggi9teJkEzbr:XSXndvz9T6yVgchB7xCeNvtOkEzb

Score

10^/10

plugx discovery trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_608abb0c39949775368837a6c068b113.exe

Resource

win7-20241023-en

plugx discovery trojan

windows7-x64

14 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_608abb0c39949775368837a6c068b113.exe

Resource

win10v2004-20250217-en

plugx discovery trojan

windows10-2004-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  JaffaCakes118_608abb0c39949775368837a6c068b113
- Size
  
  341KB
- MD5
  
  608abb0c39949775368837a6c068b113
- SHA1
  
  24de091315d67bf66d0a089524d5742c79b90400
- SHA256
  
  bba7c47c1c2af0a0d54d2c44c3386f54b59874b9c878dfa8fdacf72937770a96
- SHA512
  
  89e843d7f7cb700c35c5bcbcdce6d800e9c6b4ccee3997ec0b38c09b452e3d6edbd638b9e9f520b7fdab4dea7c18a85ad23a94eb257b777e69e504e1dd20cb8f
- SSDEEP
  
  6144:VKs+6SrgizF3ndvz9T6LmVgcHBsnsTyXS7xTvOtNbCN0bggi9teJkEzbr:XSXndvz9T6yVgchB7xCeNvtOkEzb
Score

10^/10

plugx discovery trojan
- Detects PlugX payload
- PlugX
  PlugX is a RAT (Remote Access Trojan) that has been around since 2008.
  trojan plugx
- Plugx family
  plugx
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

plugxdiscoverytrojan

behavioral2

plugxdiscoverytrojan

© 2018-2025

Terms | Privacy