General

  • Target

    89434880968c34ce753b646d41da05c97978eb642f6642d757745ba35bd21074

  • Size

    201KB

  • Sample

    221108-sdjl8schf6

  • MD5

    0aca48c098ffe47a533d6b632be4999d

  • SHA1

    ae04ebad6ad99ce9510d2094c88991a5f08eaf06

  • SHA256

    89434880968c34ce753b646d41da05c97978eb642f6642d757745ba35bd21074

  • SHA512

    48b825711f5b7e3ec03dab411ac8d26178bd0c16dcf2c64bb7b87750d8f7ae860cb8fc797ed78859f9a5a64b98e56f383fd287639851e032744af0a85ac9365b

  • SSDEEP

    6144:Hza2Nj+MLxwkcWTq/81DDiSTz9nqEja3TXU0xtFs:HqEjk7l7Fs

Malware Config

Targets

    • Target

      89434880968c34ce753b646d41da05c97978eb642f6642d757745ba35bd21074

    • Size

      201KB

    • MD5

      0aca48c098ffe47a533d6b632be4999d

    • SHA1

      ae04ebad6ad99ce9510d2094c88991a5f08eaf06

    • SHA256

      89434880968c34ce753b646d41da05c97978eb642f6642d757745ba35bd21074

    • SHA512

      48b825711f5b7e3ec03dab411ac8d26178bd0c16dcf2c64bb7b87750d8f7ae860cb8fc797ed78859f9a5a64b98e56f383fd287639851e032744af0a85ac9365b

    • SSDEEP

      6144:Hza2Nj+MLxwkcWTq/81DDiSTz9nqEja3TXU0xtFs:HqEjk7l7Fs

    • ParallaxRat

      ParallaxRat is a multipurpose RAT written in MASM.

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Loads dropped DLL

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks