crimsonrat | f26998a89d011af5860fa5c9cccf3ee09c81b14156824bdbee21e3229c7cba4b | Triage

Submit
Reports

Overview

overview

Static

static

Personal D...ta.exe

windows7_x64

Personal D...ta.exe

windows10_x64

Sharing

General

Target

f26998a89d011af5860fa5c9cccf3ee09c81b14156824bdbee21e3229c7cba4b
Size

167KB
Sample

220121-2ttxksbha7
MD5

69e6310a9803b3a57c9e8365c40a3c9b
SHA1

1ee8986d30725b921280b62fa561248dec72a639
SHA256

f26998a89d011af5860fa5c9cccf3ee09c81b14156824bdbee21e3229c7cba4b
SHA512

0a4cfcba4a3f00ea6a7ddfa6781a322e4f91ec4a53ca58fe33a4385ab32090716a41bd7b7e69d0cc0d279a96127710961645739ae6cc6e9dedc6f3b65bf1438c

Score

10^/10

crimsonrat rat

Static task

static1

Behavioral task

behavioral1

Sample

Personal Data/Personal Data.exe

Resource

win7-en-20211208

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

Personal Data/Personal Data.exe

Resource

win10-en-20211208

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  Personal Data/Personal Data.exe
- Size
  
  314KB
- MD5
  
  9057a26d250fa33e7366e7cb8480cf51
- SHA1
  
  f01e6154c079cf277c9c6f3c42a5c52e4e6a83de
- SHA256
  
  68253af6013d22553f3e87b8fd59dfade5c7f120b07ea679b041dcdcb845885a
- SHA512
  
  690dfa2f640dbc7c93933f5c8156234e364a67c5146b757dcd3ae0e3c3539a11a32e2eaf2ecd880c7edb17b9938ec5ba0c52d76ce339958e3b3ee5c966b1ba40
Score

10^/10

crimsonrat rat
- CrimsonRAT Main Payload
- CrimsonRat
  Crimson RAT is a malware linked to a Pakistani-linked threat actor.
  rat crimsonrat
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy