parallax | hxxps://drive[.]google[.]com/file/d/1RISyfN378Q5jlMUtytkiWnh_QKe_xdYB/view?usp=drive_web | Triage

Submit
Reports

Overview

overview

Static

static

URLScan

urlscan

https://drive.google...

windows10_x64

Sharing

General

Target

https://drive.google.com/file/d/1RISyfN378Q5jlMUtytkiWnh_QKe_xdYB/view?usp=drive_web
Sample

201207-5b1fe1qvb2

Score

10^/10

parallax rat

Static task

static1

URLScan task

urlscan1

Sample

https://drive.google.com/file/d/1RISyfN378Q5jlMUtytkiWnh_QKe_xdYB/view?usp=drive_web

Behavioral task

behavioral1

Sample

https://drive.google.com/file/d/1RISyfN378Q5jlMUtytkiWnh_QKe_xdYB/view?usp=drive_web

Resource

win10v20201028

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  https://drive.google.com/file/d/1RISyfN378Q5jlMUtytkiWnh_QKe_xdYB/view?usp=drive_web
Score

10^/10

parallax rat
- ParallaxRat
  ParallaxRat is a multipurpose RAT written in MASM.
  rat parallax
- ParallaxRat payload
  Detects payload of Parallax Rat, a small portable Rat usually digitally signed with a Sectigo certificate.
- Drops startup file
- Legitimate hosting services abused for malware hosting/C2
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Web Service

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

urlscan1

behavioral1

© 2018-2024

Terms | Privacy