Overview

overview

10

Static

static

9322651961...a7.exe

windows7_x64

10

9322651961...a7.exe

windows10-2004_x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    932265196175f2b8a3ac274ee1679119cf2bb7a5ee19fd359b7dc8bd258ae6a7

  • Size

    2.1MB

  • Sample

    220418-wl6crahfan

  • MD5

    700692078fd32c9dc4232fb166addc80

  • SHA1

    3c4bc3e31119ac4f9521c3092b3ff676f59c1f87

  • SHA256

    932265196175f2b8a3ac274ee1679119cf2bb7a5ee19fd359b7dc8bd258ae6a7

  • SHA512

    f89d5d24aef40c19fc81a92875df110ae03dfcf52013df302cda168440dca937a57240f19fdea86692bb03e9cb7ec8c7784441ebd6b5e75d2421a3a149e0df78

Score
10/10
parallaxratsuricata

Malware Config

Targets

    • Target

      932265196175f2b8a3ac274ee1679119cf2bb7a5ee19fd359b7dc8bd258ae6a7

    • Size

      2.1MB

    • MD5

      700692078fd32c9dc4232fb166addc80

    • SHA1

      3c4bc3e31119ac4f9521c3092b3ff676f59c1f87

    • SHA256

      932265196175f2b8a3ac274ee1679119cf2bb7a5ee19fd359b7dc8bd258ae6a7

    • SHA512

      f89d5d24aef40c19fc81a92875df110ae03dfcf52013df302cda168440dca937a57240f19fdea86692bb03e9cb7ec8c7784441ebd6b5e75d2421a3a149e0df78

    Score
    10/10
    parallaxratsuricata

    • ParallaxRat

      ParallaxRat is a multipurpose RAT written in MASM.

      ratparallax

    • ParallaxRat payload

      Detects payload of Parallax Rat, a small portable Rat usually digitally signed with a Sectigo certificate.

    • suricata: ET MALWARE Possible Zeus P2P Variant DGA NXDOMAIN Responses July 11 2014

      suricata: ET MALWARE Possible Zeus P2P Variant DGA NXDOMAIN Responses July 11 2014

      suricata

    • Drops startup file

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks