General

  • Target

    8751c9c2b10285b625eb2cfed9592dd3ed19e57bc1c818c43d40d5f0f1d96ec9

  • Size

    201KB

  • Sample

    221120-d93mnaee53

  • MD5

    004552c78c12616e07ed593729038c0d

  • SHA1

    b2dce0331b16c0bbadb11322fd7f135cb0c68400

  • SHA256

    8751c9c2b10285b625eb2cfed9592dd3ed19e57bc1c818c43d40d5f0f1d96ec9

  • SHA512

    430933a40e02fe9ed081a645575b291efe9b4f9d8d08c142c39e62db88a1d2feb9978e72b85781c26e1987f19a21250001fa85026619619d85acac9b390811d4

  • SSDEEP

    6144:Hza2Nj+MLxwkcWTq/81DDiSTz9nqEja3TXU0xtFa:HqEjk7l7Fa

Malware Config

Targets

    • Target

      8751c9c2b10285b625eb2cfed9592dd3ed19e57bc1c818c43d40d5f0f1d96ec9

    • Size

      201KB

    • MD5

      004552c78c12616e07ed593729038c0d

    • SHA1

      b2dce0331b16c0bbadb11322fd7f135cb0c68400

    • SHA256

      8751c9c2b10285b625eb2cfed9592dd3ed19e57bc1c818c43d40d5f0f1d96ec9

    • SHA512

      430933a40e02fe9ed081a645575b291efe9b4f9d8d08c142c39e62db88a1d2feb9978e72b85781c26e1987f19a21250001fa85026619619d85acac9b390811d4

    • SSDEEP

      6144:Hza2Nj+MLxwkcWTq/81DDiSTz9nqEja3TXU0xtFa:HqEjk7l7Fa

    • ParallaxRat

      ParallaxRat is a multipurpose RAT written in MASM.

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Loads dropped DLL

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks