General
-
Target
PhotoPad.exe
-
Size
8.7MB
-
Sample
220614-nv55cahgd6
-
MD5
8b3e138741dd81aab4073a6b2fa350b5
-
SHA1
d93c39a4861a899190d9e7fbea1f19c01d7b23f6
-
SHA256
4c19118800b3e0e5897312c9aa2196bd44e48b72ec4c486c3e71dc56178eb2a5
-
SHA512
de3a6a99982cd45b844f4bbcb2d4067187bea72eb1b57cb9b448dd2a4ad5aacb0a7c8a6b8dca024783ed9b8cad24301402eab7af212fdbaa19e577a6e28a461b
Static task
static1
Behavioral task
behavioral1
Sample
PhotoPad.exe
Resource
win7-20220414-en
Malware Config
Targets
-
-
Target
PhotoPad.exe
-
Size
8.7MB
-
MD5
8b3e138741dd81aab4073a6b2fa350b5
-
SHA1
d93c39a4861a899190d9e7fbea1f19c01d7b23f6
-
SHA256
4c19118800b3e0e5897312c9aa2196bd44e48b72ec4c486c3e71dc56178eb2a5
-
SHA512
de3a6a99982cd45b844f4bbcb2d4067187bea72eb1b57cb9b448dd2a4ad5aacb0a7c8a6b8dca024783ed9b8cad24301402eab7af212fdbaa19e577a6e28a461b
-
ParallaxRat payload
Detects payload of Parallax Rat, a small portable Rat usually digitally signed with a Sectigo certificate.
-
Drops startup file
-