Overview

overview

10

Static

static

scan0001/scan0001.exe

windows7_x64

10

scan0001/scan0001.exe

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e881c562ad195b51c9800bc32e8f170db651a7a97a9b3cc1304e80661e156c9f

  • Size

    143KB

  • Sample

    220121-2wsgjaccej

  • MD5

    7a03b766a87f9ed759a74ca5103fef21

  • SHA1

    7b023fa0b574cc7234ab40b242e56ed5d47d038c

  • SHA256

    e881c562ad195b51c9800bc32e8f170db651a7a97a9b3cc1304e80661e156c9f

  • SHA512

    6f9060d5d4340901fee9c8f2904f7c8224a71a4793f4cd95325e3d17e291a8507ee0cd6ae6d841bb56dba13d0938a8a3d3174e684b7a3a83ccc43f6eaceb2dba

Score
10/10
crimsonratrat

Malware Config

Targets

    • Target

      scan0001/scan0001.exe

    • Size

      289KB

    • MD5

      2cd6db80e8dadce0c00f2417b6dedaf4

    • SHA1

      488f62cab74c7754fe8736b0fe8c12c75065789e

    • SHA256

      b9446d663f2aef34efdb579ae02e62923b5c3bc02b9d0fe537f5974ae439a422

    • SHA512

      a5373990db293797347fe054333ba66dadc4eb8551515a9e67652219240f0cee3112969b3087df5a18e5fe9ccc525bfb7091356ecef293b4053b8f6a18646d63

    Score
    10/10
    crimsonratrat

    • CrimsonRAT Main Payload

    • CrimsonRat

      Crimson RAT is a malware linked to a Pakistani-linked threat actor.

      ratcrimsonrat

    • Executes dropped EXE

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks