Overview

overview

10

Static

static

297a331c90...b8.exe

windows7_x64

10

297a331c90...b8.exe

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    297a331c90ab8923b7d44a8c2e59f7b8

  • Size

    296KB

  • Sample

    201130-h5xxt4rl3a

  • MD5

    297a331c90ab8923b7d44a8c2e59f7b8

  • SHA1

    881514ba7df186ec16ac03d279cb0c1df8afb948

  • SHA256

    4546bf50e116c0cc49d206b2be2815f2724944ba7aa0b305837f90dbddd863c7

  • SHA512

    41a6543f21c25f385adb8c604d991454d23c9e540a7ca24e86653de4b9232d581de67e2680c966ef8179f951b110c0246f602b6260e940432bf164d44936e52d

Score
10/10
crimsonratrat

Malware Config

Targets

    • Target

      297a331c90ab8923b7d44a8c2e59f7b8

    • Size

      296KB

    • MD5

      297a331c90ab8923b7d44a8c2e59f7b8

    • SHA1

      881514ba7df186ec16ac03d279cb0c1df8afb948

    • SHA256

      4546bf50e116c0cc49d206b2be2815f2724944ba7aa0b305837f90dbddd863c7

    • SHA512

      41a6543f21c25f385adb8c604d991454d23c9e540a7ca24e86653de4b9232d581de67e2680c966ef8179f951b110c0246f602b6260e940432bf164d44936e52d

    Score
    10/10
    crimsonratrat

    • CrimsonRAT Main Payload

    • CrimsonRat

      Crimson RAT is a malware linked to a Pakistani-linked threat actor.

      ratcrimsonrat

    • Executes dropped EXE

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks