General

  • Target

    d7f8fdd2d525dd9f5315138c9e893b60bcfca3d2b4058b0578fd57727a618c08

  • Size

    201KB

  • Sample

    221119-c8g4wsed7t

  • MD5

    1950d17d4bb9a7fcb18926772b43efcd

  • SHA1

    5cca2aa4285f439242494fe94e74c71fbd8ad195

  • SHA256

    d7f8fdd2d525dd9f5315138c9e893b60bcfca3d2b4058b0578fd57727a618c08

  • SHA512

    ffc79f8311ff8e99a4c98d5382bc94bfdb413fc66fc8058230f94c32324cb38e071b6c8b7a003054afc022b7cc2bde17610c1705fbba74ca0bda0ef7eedd65b8

  • SSDEEP

    6144:Hza2Nj+MLxwkcWTq/81DDiSTz9nqEja3TXU0xtFi:HqEjk7l7Fi

Malware Config

Targets

    • Target

      d7f8fdd2d525dd9f5315138c9e893b60bcfca3d2b4058b0578fd57727a618c08

    • Size

      201KB

    • MD5

      1950d17d4bb9a7fcb18926772b43efcd

    • SHA1

      5cca2aa4285f439242494fe94e74c71fbd8ad195

    • SHA256

      d7f8fdd2d525dd9f5315138c9e893b60bcfca3d2b4058b0578fd57727a618c08

    • SHA512

      ffc79f8311ff8e99a4c98d5382bc94bfdb413fc66fc8058230f94c32324cb38e071b6c8b7a003054afc022b7cc2bde17610c1705fbba74ca0bda0ef7eedd65b8

    • SSDEEP

      6144:Hza2Nj+MLxwkcWTq/81DDiSTz9nqEja3TXU0xtFi:HqEjk7l7Fi

    • ParallaxRat

      ParallaxRat is a multipurpose RAT written in MASM.

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Loads dropped DLL

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks