General
-
Target
defense.exe
-
Size
1.6MB
-
Sample
230809-qhsplabe24
-
MD5
eb11d76f4db6786d48ef7ae3f6c3ad9a
-
SHA1
294482263073bfcc916e0ef6112031e6a195c28d
-
SHA256
4ceab10c2d3cdb9ae245f25c67fe95e5349d3c632d3b9140112e7d77720b5252
-
SHA512
9df543053e17f321c7880db66822d875c45b08f061c550daebaaff9214259039d7bb0cbcee4dc44053439df3b10c144a16762f73ee153eeed6d84d9935cc2c8c
-
SSDEEP
12288:8NVVyrGvaRlb2nZS1dUpSp3fHdSF9e+dy0p1i3v7fjAu1X:IVNPnZSXUpShf2c+dF1BuR
Static task
static1
Behavioral task
behavioral1
Sample
defense.exe
Resource
win7-20230712-en
Malware Config
Targets
-
-
Target
defense.exe
-
Size
1.6MB
-
MD5
eb11d76f4db6786d48ef7ae3f6c3ad9a
-
SHA1
294482263073bfcc916e0ef6112031e6a195c28d
-
SHA256
4ceab10c2d3cdb9ae245f25c67fe95e5349d3c632d3b9140112e7d77720b5252
-
SHA512
9df543053e17f321c7880db66822d875c45b08f061c550daebaaff9214259039d7bb0cbcee4dc44053439df3b10c144a16762f73ee153eeed6d84d9935cc2c8c
-
SSDEEP
12288:8NVVyrGvaRlb2nZS1dUpSp3fHdSF9e+dy0p1i3v7fjAu1X:IVNPnZSXUpShf2c+dF1BuR
-
ParallaxRat payload
Detects payload of Parallax Rat, a small portable Rat usually digitally signed with a Sectigo certificate.
-
Drops startup file
-