General

  • Target

    7881b2cfe55300fc082312e109b8f226010fe586999c9ca87da7dbe0daad2bde

  • Size

    201KB

  • Sample

    221120-d9387ahg4t

  • MD5

    23fa0fef80fa2e8ba41ae5546a27c13c

  • SHA1

    f5e41fa9f767247df59fb40b1ac423fb700f8f55

  • SHA256

    7881b2cfe55300fc082312e109b8f226010fe586999c9ca87da7dbe0daad2bde

  • SHA512

    64719f22b06a5ad498eedb605051454e123607908feaf20af6a4042ddc1dc3ae523973e1f5a1c3ca27443d670f46ca66aaf51b72756f1c902109e459dc4caea5

  • SSDEEP

    6144:Hza2Nj+MLxwkcWTq/81DDiSTz9nqEja3TXU0xtFE:HqEjk7l7FE

Malware Config

Targets

    • Target

      7881b2cfe55300fc082312e109b8f226010fe586999c9ca87da7dbe0daad2bde

    • Size

      201KB

    • MD5

      23fa0fef80fa2e8ba41ae5546a27c13c

    • SHA1

      f5e41fa9f767247df59fb40b1ac423fb700f8f55

    • SHA256

      7881b2cfe55300fc082312e109b8f226010fe586999c9ca87da7dbe0daad2bde

    • SHA512

      64719f22b06a5ad498eedb605051454e123607908feaf20af6a4042ddc1dc3ae523973e1f5a1c3ca27443d670f46ca66aaf51b72756f1c902109e459dc4caea5

    • SSDEEP

      6144:Hza2Nj+MLxwkcWTq/81DDiSTz9nqEja3TXU0xtFE:HqEjk7l7FE

    • ParallaxRat

      ParallaxRat is a multipurpose RAT written in MASM.

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Loads dropped DLL

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks