Analysis

  • max time kernel
    43s
  • max time network
    50s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    20-10-2022 09:44

General

  • Target

    56010c845cc33c51ab13862a0d85fa3ecf319a242fecce7eec395a6da770a709.exe

  • Size

    3.0MB

  • MD5

    7d542c09f57022f3fbce89b34ee0b69c

  • SHA1

    7b8e8e990fceb14825c60999c6c8f99ea4b6b811

  • SHA256

    56010c845cc33c51ab13862a0d85fa3ecf319a242fecce7eec395a6da770a709

  • SHA512

    de3e2b2ade07ad41e89c59bf8102b33989636bb347045020785622f247cb3e3aafaf11da62fa5ae6286348075f3c76e1cc9f211ce5f2f4549b1070e14944a89b

  • SSDEEP

    49152:pj3fLok0FfUtpAykRM/GHq/P7YIwjDKTa+9E9JoNH4bX741GX:prf3Cf6UR7q/P7YIwfqS74A

Score
10/10

Malware Config

Signatures

  • ParallaxRat

    ParallaxRat is a multipurpose RAT written in MASM.

  • Checks installed software on the system 1 TTPs

    Looks up Uninstall key entries in the registry to enumerate software on the system.

Processes

  • C:\Users\Admin\AppData\Local\Temp\56010c845cc33c51ab13862a0d85fa3ecf319a242fecce7eec395a6da770a709.exe
    "C:\Users\Admin\AppData\Local\Temp\56010c845cc33c51ab13862a0d85fa3ecf319a242fecce7eec395a6da770a709.exe"
    1⤵
      PID:1760

    Network

    MITRE ATT&CK Enterprise v6

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1760-54-0x0000000075281000-0x0000000075283000-memory.dmp

      Filesize

      8KB