General

  • Target

    163332c8094ff17201bf90f233c65a4733c4475e2489c74f31b9b10513921453

  • Size

    201KB

  • Sample

    221108-sdk53aefhj

  • MD5

    091b245a94e211c06342a7039acbc643

  • SHA1

    5c3d1bc830767d47aaf579fb72367933f799e9a9

  • SHA256

    163332c8094ff17201bf90f233c65a4733c4475e2489c74f31b9b10513921453

  • SHA512

    d00301d958275ce1c97e82b7f1819ddef27a47059abd8823958ef988363af45d745055738c8a9e8272ae7c4392cf0d90dd09b3c68e6ae602521bb0458c9fd218

  • SSDEEP

    6144:Hza2Nj+MLxwkcWTq/81DDiSTz9nqEja3TXU0xtFM:HqEjk7l7FM

Malware Config

Targets

    • Target

      163332c8094ff17201bf90f233c65a4733c4475e2489c74f31b9b10513921453

    • Size

      201KB

    • MD5

      091b245a94e211c06342a7039acbc643

    • SHA1

      5c3d1bc830767d47aaf579fb72367933f799e9a9

    • SHA256

      163332c8094ff17201bf90f233c65a4733c4475e2489c74f31b9b10513921453

    • SHA512

      d00301d958275ce1c97e82b7f1819ddef27a47059abd8823958ef988363af45d745055738c8a9e8272ae7c4392cf0d90dd09b3c68e6ae602521bb0458c9fd218

    • SSDEEP

      6144:Hza2Nj+MLxwkcWTq/81DDiSTz9nqEja3TXU0xtFM:HqEjk7l7FM

    • ParallaxRat

      ParallaxRat is a multipurpose RAT written in MASM.

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Loads dropped DLL

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks