General
-
Target
05e25668ecab07ba2dd341f257809f1f2c8cd7ce40c292dd68fe5d084e6e7d3c
-
Size
1.2MB
-
Sample
220124-gx9f8adch8
-
MD5
d7c4786e218bcd951eddd40a5546f336
-
SHA1
a62b11055b563d71de32f2963eb3886c2bae75e0
-
SHA256
05e25668ecab07ba2dd341f257809f1f2c8cd7ce40c292dd68fe5d084e6e7d3c
-
SHA512
3ecfefcff6086d8120414cc5ca8c02e3d0727f55de4d942c5c937d99c1c615aec3aefbc01ed4d9a9725e608a8349684f02d475c5c84032b8dbba047dfc3c3dd6
Static task
static1
Behavioral task
behavioral1
Sample
INQUIRY_.exe
Resource
win7-en-20211208
Malware Config
Targets
-
-
Target
INQUIRY_.PIF
-
Size
355KB
-
MD5
50ad2932e2e76773f14886ce03dc8d19
-
SHA1
1d16cca7e71e36d76d0d22395bb3d60ae9db0f48
-
SHA256
3bd7eae6d409d1654f4317994ec8311946d96737f1c9042ff1fc5b8fb089d549
-
SHA512
f64db23ae8dc25ece8292d4b1231e8e1d60f4185cd66e999c794a3f9571e4ba1c4764158f506baf1636a4e539f22bea4cfd5b5173483f205dec36775deb41eea
-
ParallaxRat payload
Detects payload of Parallax Rat, a small portable Rat usually digitally signed with a Sectigo certificate.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-