Overview

overview

10

Static

static

3

defense.exe

windows7-x64

10

defense.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    defense.exe

  • Size

    1.6MB

  • Sample

    230809-qfwngabd95

  • MD5

    eb11d76f4db6786d48ef7ae3f6c3ad9a

  • SHA1

    294482263073bfcc916e0ef6112031e6a195c28d

  • SHA256

    4ceab10c2d3cdb9ae245f25c67fe95e5349d3c632d3b9140112e7d77720b5252

  • SHA512

    9df543053e17f321c7880db66822d875c45b08f061c550daebaaff9214259039d7bb0cbcee4dc44053439df3b10c144a16762f73ee153eeed6d84d9935cc2c8c

  • SSDEEP

    12288:8NVVyrGvaRlb2nZS1dUpSp3fHdSF9e+dy0p1i3v7fjAu1X:IVNPnZSXUpShf2c+dF1BuR

Score
10/10
parallaxrat

Malware Config

Targets

    • Target

      defense.exe

    • Size

      1.6MB

    • MD5

      eb11d76f4db6786d48ef7ae3f6c3ad9a

    • SHA1

      294482263073bfcc916e0ef6112031e6a195c28d

    • SHA256

      4ceab10c2d3cdb9ae245f25c67fe95e5349d3c632d3b9140112e7d77720b5252

    • SHA512

      9df543053e17f321c7880db66822d875c45b08f061c550daebaaff9214259039d7bb0cbcee4dc44053439df3b10c144a16762f73ee153eeed6d84d9935cc2c8c

    • SSDEEP

      12288:8NVVyrGvaRlb2nZS1dUpSp3fHdSF9e+dy0p1i3v7fjAu1X:IVNPnZSXUpShf2c+dF1BuR

    Score
    10/10
    parallaxrat

    • ParallaxRat

      ParallaxRat is a multipurpose RAT written in MASM.

      ratparallax

    • ParallaxRat payload

      Detects payload of Parallax Rat, a small portable Rat usually digitally signed with a Sectigo certificate.

    • Drops startup file

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks