crimsonrat | b0ad4f3310261549c5a6cc13aadd8d7525c3cec9ef944c2b8762992360643b87 | Triage

Submit
Reports

Overview

overview

Static

static

8

b0ad4f3310...87.xls

windows7_x64

b0ad4f3310...87.xls

windows10_x64

Sharing

Copy URL Twitter E-mail

General

Target

b0ad4f3310261549c5a6cc13aadd8d7525c3cec9ef944c2b8762992360643b87
Size

621KB
Sample

220121-3aeh8acfb2
MD5

3c03f18dad61e9cde18a326eab9e64c1
SHA1

4a3c9f2d7f4d591ccb5e200a40c6012c55f02591
SHA256

b0ad4f3310261549c5a6cc13aadd8d7525c3cec9ef944c2b8762992360643b87
SHA512

357ef4b180db9de2ec19cb0677f1ee8959ea800568911fb83e8a3d367bcb06f2dfba5b92b5496136a5f368a818d24ec4cd49fc4a78a6c6597724cd61994851d4

Score

10^/10

crimsonrat macro macro_on_action rat

Static task

static1

macro macro_on_action

Behavioral task

behavioral1

Sample

b0ad4f3310261549c5a6cc13aadd8d7525c3cec9ef944c2b8762992360643b87.xls

Resource

win7-en-20211208

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

b0ad4f3310261549c5a6cc13aadd8d7525c3cec9ef944c2b8762992360643b87.xls

Resource

win10-en-20211208

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  b0ad4f3310261549c5a6cc13aadd8d7525c3cec9ef944c2b8762992360643b87
- Size
  
  621KB
- MD5
  
  3c03f18dad61e9cde18a326eab9e64c1
- SHA1
  
  4a3c9f2d7f4d591ccb5e200a40c6012c55f02591
- SHA256
  
  b0ad4f3310261549c5a6cc13aadd8d7525c3cec9ef944c2b8762992360643b87
- SHA512
  
  357ef4b180db9de2ec19cb0677f1ee8959ea800568911fb83e8a3d367bcb06f2dfba5b92b5496136a5f368a818d24ec4cd49fc4a78a6c6597724cd61994851d4
Score

10^/10

crimsonrat rat
- CrimsonRAT Main Payload
- CrimsonRat
  Crimson RAT is a malware linked to a Pakistani-linked threat actor.
  rat crimsonrat
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

macromacro_on_action

behavioral1

behavioral2

© 2018-2025

Terms | Privacy