General

  • Target

    a51d7468c145280e97fbfa442f6f03caa984539e9b1bf5d53ccb866deab04683

  • Size

    201KB

  • Sample

    221011-sldqysbdgm

  • MD5

    27689a3abc46a9541375d2fc11930376

  • SHA1

    d28aa1818c54105d85e3c80cbee41da61e626846

  • SHA256

    a51d7468c145280e97fbfa442f6f03caa984539e9b1bf5d53ccb866deab04683

  • SHA512

    d30a5f06f8c0becf42a45c0f9804cbba655372d908aa3c62b2f9b66932c719b35afcbb48035e4796bb2a7aae79ede2e9ac20f7afaf3f1c2529b5a185bbe21f94

  • SSDEEP

    6144:Hza2Nj+MLxwkcWTq/81DDiSTz9nqEja3TXU0xtFu:HqEjk7l7Fu

Malware Config

Targets

    • Target

      a51d7468c145280e97fbfa442f6f03caa984539e9b1bf5d53ccb866deab04683

    • Size

      201KB

    • MD5

      27689a3abc46a9541375d2fc11930376

    • SHA1

      d28aa1818c54105d85e3c80cbee41da61e626846

    • SHA256

      a51d7468c145280e97fbfa442f6f03caa984539e9b1bf5d53ccb866deab04683

    • SHA512

      d30a5f06f8c0becf42a45c0f9804cbba655372d908aa3c62b2f9b66932c719b35afcbb48035e4796bb2a7aae79ede2e9ac20f7afaf3f1c2529b5a185bbe21f94

    • SSDEEP

      6144:Hza2Nj+MLxwkcWTq/81DDiSTz9nqEja3TXU0xtFu:HqEjk7l7Fu

    • ParallaxRat

      ParallaxRat is a multipurpose RAT written in MASM.

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Loads dropped DLL

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks