General
-
Target
dot.exe
-
Size
3.4MB
-
Sample
230207-vaj5pscf94
-
MD5
ac88204b208f187a908c6a1148b7aee8
-
SHA1
74b895683f51a69f1bce838ac174c019a796cb1a
-
SHA256
fc97b364bebaf6b1b4baa16e906b4b9f9f8604034f0b9df1f7deb0418f3d229e
-
SHA512
2f5e6fff1f98403e987dd6a6a50df757604c8abe474d88143f04c6df6c8bfb4e62652f8f29f19acd834fd865998feaec4f03e2d9a48434ecb8c2cfad5e8e5e27
-
SSDEEP
24576:7cqJge1JYGhCP3dbTb2XShCFVshuhBcomEl+11s3jYx9pcualicf2IZ:kyXALoh+eQEualt7Z
Malware Config
Targets
-
-
Target
dot.exe
-
Size
3.4MB
-
MD5
ac88204b208f187a908c6a1148b7aee8
-
SHA1
74b895683f51a69f1bce838ac174c019a796cb1a
-
SHA256
fc97b364bebaf6b1b4baa16e906b4b9f9f8604034f0b9df1f7deb0418f3d229e
-
SHA512
2f5e6fff1f98403e987dd6a6a50df757604c8abe474d88143f04c6df6c8bfb4e62652f8f29f19acd834fd865998feaec4f03e2d9a48434ecb8c2cfad5e8e5e27
-
SSDEEP
24576:7cqJge1JYGhCP3dbTb2XShCFVshuhBcomEl+11s3jYx9pcualicf2IZ:kyXALoh+eQEualt7Z
Score10/10-
ParallaxRat
ParallaxRat is a multipurpose RAT written in MASM.
-
ParallaxRat payload
Detects payload of Parallax Rat, a small portable Rat usually digitally signed with a Sectigo certificate.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Drops startup file
-