General
-
Target
50E671FFE182A6063FB4DD4EF25CEE71.exe
-
Size
6.6MB
-
Sample
210718-qngcg59kqn
-
MD5
50e671ffe182a6063fb4dd4ef25cee71
-
SHA1
f3ac02099a0619d17c5a51797727517b03b17a55
-
SHA256
df3dabd031184b67bab7043baaae17061c21939d725e751c0a6f6b7867d0cf34
-
SHA512
e014291d9e3a6310061e1bcfc317e257aad9ca90363c1f989cf357f49dfbfb98554136e996c3e158ede07b60846b4513ee470f2b58161acfb8a2cf34d0fb1c79
Static task
static1
Behavioral task
behavioral1
Sample
50E671FFE182A6063FB4DD4EF25CEE71.exe
Resource
win7v20210410
Malware Config
Targets
-
-
Target
50E671FFE182A6063FB4DD4EF25CEE71.exe
-
Size
6.6MB
-
MD5
50e671ffe182a6063fb4dd4ef25cee71
-
SHA1
f3ac02099a0619d17c5a51797727517b03b17a55
-
SHA256
df3dabd031184b67bab7043baaae17061c21939d725e751c0a6f6b7867d0cf34
-
SHA512
e014291d9e3a6310061e1bcfc317e257aad9ca90363c1f989cf357f49dfbfb98554136e996c3e158ede07b60846b4513ee470f2b58161acfb8a2cf34d0fb1c79
-
ParallaxRat payload
Detects payload of Parallax Rat, a small portable Rat usually digitally signed with a Sectigo certificate.
-
Blocklisted process makes network request
-
Executes dropped EXE
-
Loads dropped DLL
-