General

  • Target

    10efc3ad29417451155d056316a54f9a30b8cffb59519417744587d41fe00280

  • Size

    201KB

  • Sample

    221029-yffw1sdaan

  • MD5

    519e2b1bdf70504e58b1d279ba8a1340

  • SHA1

    d3b156e7bdfeaff1dfef1e118ad9ad24c13f97c5

  • SHA256

    10efc3ad29417451155d056316a54f9a30b8cffb59519417744587d41fe00280

  • SHA512

    59e0cf28f7ae7ccd2119b0db2b8a9714c54238fda397e5493ae6584ad2eece4d811a99423ee5b3ec80ae47bb918f7a6f07e131a8fadd9f9cb291d4f32a481a7a

  • SSDEEP

    6144:Hza2Nj+MLxwkcWTq/81DDiSTz9nqEja3TXU0xtFO:HqEjk7l7FO

Malware Config

Targets

    • Target

      10efc3ad29417451155d056316a54f9a30b8cffb59519417744587d41fe00280

    • Size

      201KB

    • MD5

      519e2b1bdf70504e58b1d279ba8a1340

    • SHA1

      d3b156e7bdfeaff1dfef1e118ad9ad24c13f97c5

    • SHA256

      10efc3ad29417451155d056316a54f9a30b8cffb59519417744587d41fe00280

    • SHA512

      59e0cf28f7ae7ccd2119b0db2b8a9714c54238fda397e5493ae6584ad2eece4d811a99423ee5b3ec80ae47bb918f7a6f07e131a8fadd9f9cb291d4f32a481a7a

    • SSDEEP

      6144:Hza2Nj+MLxwkcWTq/81DDiSTz9nqEja3TXU0xtFO:HqEjk7l7FO

    • ParallaxRat

      ParallaxRat is a multipurpose RAT written in MASM.

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Loads dropped DLL

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks