Difference between revisions of "PlugX"

From Botnets.fr
Jump to navigation Jump to search
m (1 revision imported)
 
m (Text replacement - "=Unknown" to "=")
 
Line 1: Line 1:
{{Botnet
{{Botnet
|UserAgent=Unknown
|UserAgent=
|CCProtocol=TCP/443
|CCProtocol=TCP/443
|CC2=UDP/443
|CC2=UDP/443
|Target=Microsoft Windows
|Target=Microsoft Windows
|Status=Unknown
|Status=
|BeginYear=Unknown
|BeginYear=
|EndYear=Unknown
|EndYear=
|Group=RAT
|Group=RAT
|Alias=Korplug
|Alias=Korplug

Latest revision as of 15:50, 8 August 2015

(Botnet) Link to the old Wiki page : [1] / Google search: [2]

PlugX
Alias Gulpix
Group RAT
Parent
Sibling
Family
Relations Variants:

Sibling of:
Parent of:
Distribution of:
Campaigns:

Target Microsoft Windows
Origin
Distribution vector
UserAgent
CCProtocol TCP/443 (Port)
Activity /
Status
Language
Programming language
Operation/Working group

Introduction

Features

Associated images

Checksums / AV databases

Publications

 AuthorEditorYear
Analysis of a PlugX malware variant used for targeted attacksCIRCLCIRCL2013
PlugX malware: A good hacker is an apologetic hackerDmitry TarakanovKaspersky Securelist2016
PlugX: new tool for a not so new campaignRoland Dela PazTrend Micro2012
PlugX: some uncovered pointsFabien PerigaudCassidian Cybersecurity2014
TR-24 analysis - Destory RAT familyCIRCL2014
Tracking down the author of the PlugX RATJaime BlascoAlienvault2012
Retrieved from "https://www.botnets.fr/index.php?title=PlugX&oldid=12470"