Resubmissions

21-02-2023 10:43

230221-mr8kmagd3x 10

21-02-2023 10:16

230221-ma4kcagc5z 10

Analysis

  • max time kernel
    31s
  • max time network
    187s
  • platform
    windows7_x64
  • resource
    win7-20230220-en
  • resource tags

    arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
  • submitted
    21-02-2023 10:16

General

  • Target

    test.exe

  • Size

    116KB

  • MD5

    c06bae41558e6f75843cb5efd3109526

  • SHA1

    358711f6526ada2c90cc17f036298672c88c97cf

  • SHA256

    33d9519d65da8386ae91a80fe584137ff1df6d0120f15ee665846d005b0d92ba

  • SHA512

    cc79158e66f510f50ae3f3cbeee6d347057420c7e11af79f0f5d2bafa4bd4482f932ed66fea2cff2db8c94a3711d85b51fc8c028e2bdfddd1646a1c6593216c5

  • SSDEEP

    3072:3O5r2flhPLgTzGqrebmBQE7meFv3Jv00zR:3O5fzGo5u4pz

Score
10/10

Malware Config

Signatures

  • ParallaxRat

    ParallaxRat is a multipurpose RAT written in MASM.

  • ParallaxRat payload 1 IoCs

    Detects payload of Parallax Rat, a small portable Rat usually digitally signed with a Sectigo certificate.

Processes

  • C:\Users\Admin\AppData\Local\Temp\test.exe
    "C:\Users\Admin\AppData\Local\Temp\test.exe"
    1⤵
      PID:1088

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1088-54-0x0000000000400000-0x0000000000426000-memory.dmp

      Filesize

      152KB