ploutus | 67ffbe84ce833f1cb12d559bbcb391901ff3591c37f5b5ad8026b1fe2017e938 | Triage

Submit
Reports

Overview

overview

Static

static

3

1c416a7460...18.exe

windows7-x64

1c416a7460...18.exe

windows10-2004-x64

Sharing

General

Target

1c416a7460e1f9825aadc1eaf1fe61d4_JaffaCakes118
Size

1.5MB
Sample

240506-ngf83add44
MD5

1c416a7460e1f9825aadc1eaf1fe61d4
SHA1

ac50203dc66f1ded1460568581df6d18f4485e65
SHA256

67ffbe84ce833f1cb12d559bbcb391901ff3591c37f5b5ad8026b1fe2017e938
SHA512

a41485a627eab6ed79fc1155ccacba7dcbf62cbb235e64c32430bb9160317f33c1e3bca4515307f535dc9c1cd7eb7f9326bffa540be021abe895fd08437ec455
SSDEEP

24576:uP/NBC6j3UA1NFQL5B4I+92ZmNJQhR1elZ3Yjvv/8dDsgxeJ/vlxNc1PIiBqYAJ7:uP/NeKy5B4Z2SQhR1ef3Iv/8dReJwIa7

Score

10^/10

ploutus atm backdoor

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

1c416a7460e1f9825aadc1eaf1fe61d4_JaffaCakes118.exe

Resource

win7-20240221-en

ploutus atm backdoor

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

1c416a7460e1f9825aadc1eaf1fe61d4_JaffaCakes118.exe

Resource

win10v2004-20240419-en

ploutus atm backdoor

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  1c416a7460e1f9825aadc1eaf1fe61d4_JaffaCakes118
- Size
  
  1.5MB
- MD5
  
  1c416a7460e1f9825aadc1eaf1fe61d4
- SHA1
  
  ac50203dc66f1ded1460568581df6d18f4485e65
- SHA256
  
  67ffbe84ce833f1cb12d559bbcb391901ff3591c37f5b5ad8026b1fe2017e938
- SHA512
  
  a41485a627eab6ed79fc1155ccacba7dcbf62cbb235e64c32430bb9160317f33c1e3bca4515307f535dc9c1cd7eb7f9326bffa540be021abe895fd08437ec455
- SSDEEP
  
  24576:uP/NBC6j3UA1NFQL5B4I+92ZmNJQhR1elZ3Yjvv/8dDsgxeJ/vlxNc1PIiBqYAJ7:uP/NeKy5B4Z2SQhR1ef3Iv/8dReJwIa7
Score

10^/10

ploutus atm backdoor
- Detected Ploutus loader
- Ploutus
  Ploutus is an ATM malware written in C#.
  backdoor atm ploutus
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

ploutusatmbackdoor

behavioral2

ploutusatmbackdoor

© 2018-2024

Terms | Privacy