crimsonrat | 965b90d435c1676fa78cdce1eee2ec70e3194c0e4f0d993bc36bfd9f77697969 | Triage

Submit
Reports

Overview

overview

Static

static

8

965b90d435...69.doc

windows7_x64

965b90d435...69.doc

windows10_x64

Sharing

Copy URL Twitter E-mail

General

Target

965b90d435c1676fa78cdce1eee2ec70e3194c0e4f0d993bc36bfd9f77697969
Size

487KB
Sample

210514-lswzd1rh7x
MD5

80812d4b01071a137f5bf845beb80e8b
SHA1

3ee10a5a36c3dd3e1d1b7b356f7c022768c276ff
SHA256

965b90d435c1676fa78cdce1eee2ec70e3194c0e4f0d993bc36bfd9f77697969
SHA512

d5f5c33e3328c1e7444e3851c6f9e3cdc2fd2ee25f7d9a123ff3bf11e6e4702d0b7e0fd49aa305dac015b823d6c0a096805241bb5358f1414f825ab5005743b4

Score

10^/10

crimsonrat macro macro_on_action rat

Static task

static1

macro macro_on_action

Behavioral task

behavioral1

Sample

965b90d435c1676fa78cdce1eee2ec70e3194c0e4f0d993bc36bfd9f77697969.doc

Resource

win7v20210410

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

965b90d435c1676fa78cdce1eee2ec70e3194c0e4f0d993bc36bfd9f77697969.doc

Resource

win10v20210410

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  965b90d435c1676fa78cdce1eee2ec70e3194c0e4f0d993bc36bfd9f77697969
- Size
  
  487KB
- MD5
  
  80812d4b01071a137f5bf845beb80e8b
- SHA1
  
  3ee10a5a36c3dd3e1d1b7b356f7c022768c276ff
- SHA256
  
  965b90d435c1676fa78cdce1eee2ec70e3194c0e4f0d993bc36bfd9f77697969
- SHA512
  
  d5f5c33e3328c1e7444e3851c6f9e3cdc2fd2ee25f7d9a123ff3bf11e6e4702d0b7e0fd49aa305dac015b823d6c0a096805241bb5358f1414f825ab5005743b4
Score

10^/10

crimsonrat rat
- CrimsonRAT Main Payload
- CrimsonRat
  Crimson RAT is a malware linked to a Pakistani-linked threat actor.
  rat crimsonrat
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

macromacro_on_action

behavioral1

behavioral2

© 2018-2025

Terms | Privacy