parallax | 1f54c4b578cdcaf15c817f18ee715a8cf2b7944c44e268ae8fa8bc9427922bf2 | Triage

Submit
Reports

Overview

overview

Static

static

6

1f54c4b578...f2.exe

windows7_x64

1f54c4b578...f2.exe

windows10_x64

Sharing

General

Target

1f54c4b578cdcaf15c817f18ee715a8cf2b7944c44e268ae8fa8bc9427922bf2
Size

3.2MB
Sample

210204-d2crsm5yle
MD5

e890b231731a69c7fcc252bf6d8b59d6
SHA1

74d0fb7d0d4f6e314e8cb92a506bbc3e33fad2cd
SHA256

1f54c4b578cdcaf15c817f18ee715a8cf2b7944c44e268ae8fa8bc9427922bf2
SHA512

0751518e5ca71f023b6f0b09f48168ebfd9d2fa97c1ae4be70eddfc672517515b3b36a913e540a74fdd13edb958bfc341f1f6a7a86104c13cf9d7d9673085c86

Score

10^/10

parallax ransomware rat

Static task

static1

Behavioral task

behavioral1

Sample

1f54c4b578cdcaf15c817f18ee715a8cf2b7944c44e268ae8fa8bc9427922bf2.exe

Resource

win7v20201028

parallax ransomware rat

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

1f54c4b578cdcaf15c817f18ee715a8cf2b7944c44e268ae8fa8bc9427922bf2.exe

Resource

win10v20201028

parallax ransomware rat

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  1f54c4b578cdcaf15c817f18ee715a8cf2b7944c44e268ae8fa8bc9427922bf2
- Size
  
  3.2MB
- MD5
  
  e890b231731a69c7fcc252bf6d8b59d6
- SHA1
  
  74d0fb7d0d4f6e314e8cb92a506bbc3e33fad2cd
- SHA256
  
  1f54c4b578cdcaf15c817f18ee715a8cf2b7944c44e268ae8fa8bc9427922bf2
- SHA512
  
  0751518e5ca71f023b6f0b09f48168ebfd9d2fa97c1ae4be70eddfc672517515b3b36a913e540a74fdd13edb958bfc341f1f6a7a86104c13cf9d7d9673085c86
Score

10^/10

parallax ransomware rat
- ParallaxRat
  ParallaxRat is a multipurpose RAT written in MASM.
  rat parallax
- ParallaxRat payload
  Detects payload of Parallax Rat, a small portable Rat usually digitally signed with a Sectigo certificate.
- Blocklisted process makes network request
- Drops startup file
- Enumerates physical storage devices
  Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

parallaxransomwarerat

behavioral2

parallaxransomwarerat

© 2018-2024

Terms | Privacy