Overview

overview

10

Static

static

8

67da247110...1.xlam

windows7_x64

10

67da247110...1.xlam

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    67da24711012366322f2e6ab3534d62c064d24dc6e113b6077354c792cc56b71

  • Size

    112KB

  • Sample

    220121-3rg1nsddd8

  • MD5

    1b54bc52032731b5c75b9f74df7e1afe

  • SHA1

    cdddaf72deb956e039e5e8c10230d6c872a34e10

  • SHA256

    67da24711012366322f2e6ab3534d62c064d24dc6e113b6077354c792cc56b71

  • SHA512

    818961365b8dd76b7cdc90e2b00d9419e13de6e0797b9fb012a2b4bcaf4e5856376ebeb216ceb9afe810b34a4227e3222aea85ccc872f7ae013a5b98f46c54d3

Score
10/10
crimsonratmacrorat

Malware Config

Targets

    • Target

      67da24711012366322f2e6ab3534d62c064d24dc6e113b6077354c792cc56b71

    • Size

      112KB

    • MD5

      1b54bc52032731b5c75b9f74df7e1afe

    • SHA1

      cdddaf72deb956e039e5e8c10230d6c872a34e10

    • SHA256

      67da24711012366322f2e6ab3534d62c064d24dc6e113b6077354c792cc56b71

    • SHA512

      818961365b8dd76b7cdc90e2b00d9419e13de6e0797b9fb012a2b4bcaf4e5856376ebeb216ceb9afe810b34a4227e3222aea85ccc872f7ae013a5b98f46c54d3

    Score
    10/10
    crimsonratrat

    • CrimsonRAT Main Payload

    • CrimsonRat

      Crimson RAT is a malware linked to a Pakistani-linked threat actor.

      ratcrimsonrat

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks