Overview

overview

10

Static

static

1

tmp.exe

windows7-x64

10

tmp.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    tmp

  • Size

    3.9MB

  • Sample

    230221-f6kc1sff4t

  • MD5

    40256ea622aa1d0678f5bde48b9aa0fb

  • SHA1

    ba9dc2820ff412f06ca986dd03af1880d5a60f41

  • SHA256

    c3a3c6015ffc1bc98b5a21f89e78049900e5796e67e098bead011a20a99e7b0d

  • SHA512

    04f9be55aeb88ff4f11b786f10e1bbcfa5cc1cf0b54f56d2d68fe067b0ada592f6aac93148cfbfe23916bbbe581669befebc4e95630f8c3e76303bc8e69ff450

  • SSDEEP

    6144:DYh6ApoWrujS9yeoh6VVK7xvYTMxgUHgufnKiXybpsb:0h6ApVruja5oh2K755KUH5nNXylS

Score
10/10
parallaxrat

Malware Config

Targets

    • Target

      tmp

    • Size

      3.9MB

    • MD5

      40256ea622aa1d0678f5bde48b9aa0fb

    • SHA1

      ba9dc2820ff412f06ca986dd03af1880d5a60f41

    • SHA256

      c3a3c6015ffc1bc98b5a21f89e78049900e5796e67e098bead011a20a99e7b0d

    • SHA512

      04f9be55aeb88ff4f11b786f10e1bbcfa5cc1cf0b54f56d2d68fe067b0ada592f6aac93148cfbfe23916bbbe581669befebc4e95630f8c3e76303bc8e69ff450

    • SSDEEP

      6144:DYh6ApoWrujS9yeoh6VVK7xvYTMxgUHgufnKiXybpsb:0h6ApVruja5oh2K755KUH5nNXylS

    Score
    10/10
    parallaxrat

    • ParallaxRat

      ParallaxRat is a multipurpose RAT written in MASM.

      ratparallax

    • ParallaxRat payload

      Detects payload of Parallax Rat, a small portable Rat usually digitally signed with a Sectigo certificate.

    • Drops startup file

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks