Overview

overview

10

Static

static

6333e9f091...20.doc

windows7_x64

10

6333e9f091...20.doc

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6333e9f091e0f605b91d2fbae9a7040800837bdc9418ccda9bd91e894b610a20

  • Size

    566KB

  • Sample

    220121-3sab8adhaq

  • MD5

    4d33804d5e6fd053837ddd374d7e32b5

  • SHA1

    814e994008a1b58d0732e75ed00c12f547842fa9

  • SHA256

    6333e9f091e0f605b91d2fbae9a7040800837bdc9418ccda9bd91e894b610a20

  • SHA512

    2953337fc32f49d6d2bf4fa86715cb26ea319c36331163d2959dfc31d8fece7ee59605d454cd92af3f70b2ccd916b4e6c289c09ac0a210678670173e1af74016

Score
10/10
crimsonratrat

Malware Config

Targets

    • Target

      6333e9f091e0f605b91d2fbae9a7040800837bdc9418ccda9bd91e894b610a20

    • Size

      566KB

    • MD5

      4d33804d5e6fd053837ddd374d7e32b5

    • SHA1

      814e994008a1b58d0732e75ed00c12f547842fa9

    • SHA256

      6333e9f091e0f605b91d2fbae9a7040800837bdc9418ccda9bd91e894b610a20

    • SHA512

      2953337fc32f49d6d2bf4fa86715cb26ea319c36331163d2959dfc31d8fece7ee59605d454cd92af3f70b2ccd916b4e6c289c09ac0a210678670173e1af74016

    Score
    10/10
    crimsonratrat

    • CrimsonRAT Main Payload

    • CrimsonRat

      Crimson RAT is a malware linked to a Pakistani-linked threat actor.

      ratcrimsonrat

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks