Overview

overview

10

Static

static

2b58394b23...d6.exe

windows7_x64

10

2b58394b23...d6.exe

windows10-2004_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2b58394b23c0116c5f2442da28309baee99b2b4ef870aa5381cdd03ce6480cd6

  • Size

    2.8MB

  • Sample

    220506-jwjkhsccfq

  • MD5

    f72d60aee446e6e8f41abdf05af864e2

  • SHA1

    597b11af8917523ae93d4855582101f9f452dc2c

  • SHA256

    2b58394b23c0116c5f2442da28309baee99b2b4ef870aa5381cdd03ce6480cd6

  • SHA512

    077e57611152e5b74d5c99d1aecb5593c706119c0d23b71cc750c492f18a230a2e349c05107afd1395769c2f4f2d2007ac626a92e59f2e7eafbd7210039169b3

Score
10/10
parallaxrat

Malware Config

Targets

    • Target

      2b58394b23c0116c5f2442da28309baee99b2b4ef870aa5381cdd03ce6480cd6

    • Size

      2.8MB

    • MD5

      f72d60aee446e6e8f41abdf05af864e2

    • SHA1

      597b11af8917523ae93d4855582101f9f452dc2c

    • SHA256

      2b58394b23c0116c5f2442da28309baee99b2b4ef870aa5381cdd03ce6480cd6

    • SHA512

      077e57611152e5b74d5c99d1aecb5593c706119c0d23b71cc750c492f18a230a2e349c05107afd1395769c2f4f2d2007ac626a92e59f2e7eafbd7210039169b3

    Score
    10/10
    parallaxrat

    • ParallaxRat

      ParallaxRat is a multipurpose RAT written in MASM.

      ratparallax

    • ParallaxRat payload

      Detects payload of Parallax Rat, a small portable Rat usually digitally signed with a Sectigo certificate.

    • Drops startup file

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks