General
-
Target
Scribe.exe
-
Size
2.0MB
-
Sample
220506-jwjkhsheh7
-
MD5
a0fc62c608603f02cae7a7103625cbca
-
SHA1
2c6961b447b9b20aca8da625923568e79f40066f
-
SHA256
152cd4630ca5b31679f9af5b5226869962d0631276a3b9ab3af71bbe5c87ab46
-
SHA512
9a441c607ef833632e37db705d03c5cec147659b07548eb2c2f46f047d3425110787b9675e91eb5196897e32eedecdc5bf96f5fd681e5d6ed86831ed3af54a5f
Static task
static1
Behavioral task
behavioral1
Sample
Scribe.exe
Resource
win7-20220414-en
Malware Config
Targets
-
-
Target
Scribe.exe
-
Size
2.0MB
-
MD5
a0fc62c608603f02cae7a7103625cbca
-
SHA1
2c6961b447b9b20aca8da625923568e79f40066f
-
SHA256
152cd4630ca5b31679f9af5b5226869962d0631276a3b9ab3af71bbe5c87ab46
-
SHA512
9a441c607ef833632e37db705d03c5cec147659b07548eb2c2f46f047d3425110787b9675e91eb5196897e32eedecdc5bf96f5fd681e5d6ed86831ed3af54a5f
-
ParallaxRat payload
Detects payload of Parallax Rat, a small portable Rat usually digitally signed with a Sectigo certificate.
-
Drops startup file
-