Overview

overview

10

Static

static

8

2f8e2c8300...66.pps

windows7_x64

10

2f8e2c8300...66.pps

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2f8e2c8300b7854ff204375f5116854cee7c4ef11f9b080dce89713867fd7066

  • Size

    831KB

  • Sample

    220130-s3sansdcdl

  • MD5

    6c683aca669e1c448b0abce3df49fcb1

  • SHA1

    2c5686beca1f8b111f3a5568681004de526130f6

  • SHA256

    2f8e2c8300b7854ff204375f5116854cee7c4ef11f9b080dce89713867fd7066

  • SHA512

    30a7b2c804c7b7cf69a99ba7f614b4a4fb1b14ac7683ba1c5e8fad7269d9b3a950fc35eac92045ce1e5d96d399c5ba1f0a4bf6ef39648943cd8f1fd15b8daff6

Score
10/10
crimsonratmacromacro_on_actionrat

Malware Config

Targets

    • Target

      2f8e2c8300b7854ff204375f5116854cee7c4ef11f9b080dce89713867fd7066

    • Size

      831KB

    • MD5

      6c683aca669e1c448b0abce3df49fcb1

    • SHA1

      2c5686beca1f8b111f3a5568681004de526130f6

    • SHA256

      2f8e2c8300b7854ff204375f5116854cee7c4ef11f9b080dce89713867fd7066

    • SHA512

      30a7b2c804c7b7cf69a99ba7f614b4a4fb1b14ac7683ba1c5e8fad7269d9b3a950fc35eac92045ce1e5d96d399c5ba1f0a4bf6ef39648943cd8f1fd15b8daff6

    Score
    10/10
    crimsonratrat

    • CrimsonRAT Main Payload

    • CrimsonRat

      Crimson RAT is a malware linked to a Pakistani-linked threat actor.

      ratcrimsonrat

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks