Overview

overview

10

Static

static

fix.exe

windows7_x64

10

fix.exe

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fix.exe

  • Size

    2.1MB

  • Sample

    210222-vvlzq27fl6

  • MD5

    e5dca24997147b550e3b4bcaa9ce804b

  • SHA1

    a9cdf9ea04391ad06fdf686fba432dc093593f67

  • SHA256

    525d3b180847b425e376157caabbf860b421078903228d919d1e5e0fcce5741c

  • SHA512

    42451cae7cd3ef5d7a0f8b75de42859d5b71aab92e360b6a7bb8ed51b343f390e77842e5a2a3d72157bfa63af04053c42c0c9cfe6918e1ed2ec4183b1229ef3f

Score
10/10
parallaxrat

Malware Config

Targets

    • Target

      fix.exe

    • Size

      2.1MB

    • MD5

      e5dca24997147b550e3b4bcaa9ce804b

    • SHA1

      a9cdf9ea04391ad06fdf686fba432dc093593f67

    • SHA256

      525d3b180847b425e376157caabbf860b421078903228d919d1e5e0fcce5741c

    • SHA512

      42451cae7cd3ef5d7a0f8b75de42859d5b71aab92e360b6a7bb8ed51b343f390e77842e5a2a3d72157bfa63af04053c42c0c9cfe6918e1ed2ec4183b1229ef3f

    Score
    10/10
    parallaxrat

    • ParallaxRat

      ParallaxRat is a multipurpose RAT written in MASM.

      ratparallax

    • ParallaxRat payload

      Detects payload of Parallax Rat, a small portable Rat usually digitally signed with a Sectigo certificate.

    • Blocklisted process makes network request

    • Drops startup file

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks