Analysis of a PlugX variant

by George Chetcuti [Published on 9 April 2013 / Last Updated on 24 June 2014]

Analysis of a Remote Access Tool (RAT) which is usually named PlugX (also known as Gulpix, Korplug).

Circl.lu Luxembourg’s Computer Incident Response Center has published its malware analysis of a Remote Access Tool (RAT) which is a variant of Plugx. Plugx features ways to defeat other protection mechanisms like UAC3 and it compromises valid signed binaries to perform Cyber-attacks.

Read more here - http://www.circl.lu/pub/tr-12/

Add Review or Comment

See Also

Featured Links