Overview

overview

10

Static

static

8

2cef1c6ead...58.xls

windows7_x64

10

2cef1c6ead...58.xls

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2cef1c6ead6c8faebf201a1e2b24a8e89b27e946244cf2116c607810b5e4f658

  • Size

    527KB

  • Sample

    220130-s6qw1sdddj

  • MD5

    f940e886a40783deb4e97fe6d842da7a

  • SHA1

    804c607df4ca86483cfc26ed919c91f6e915d7e1

  • SHA256

    2cef1c6ead6c8faebf201a1e2b24a8e89b27e946244cf2116c607810b5e4f658

  • SHA512

    6d6f990dac1b319a79fb39a535ed30db6a99885d9ff1961124ebb29626a25bb6ee2aa5606f6a8d72f2d48f78a6c1fd401d45830c6919dd95c0c3149737cabaf2

Score
10/10
crimsonratmacromacro_on_actionrat

Malware Config

Targets

    • Target

      2cef1c6ead6c8faebf201a1e2b24a8e89b27e946244cf2116c607810b5e4f658

    • Size

      527KB

    • MD5

      f940e886a40783deb4e97fe6d842da7a

    • SHA1

      804c607df4ca86483cfc26ed919c91f6e915d7e1

    • SHA256

      2cef1c6ead6c8faebf201a1e2b24a8e89b27e946244cf2116c607810b5e4f658

    • SHA512

      6d6f990dac1b319a79fb39a535ed30db6a99885d9ff1961124ebb29626a25bb6ee2aa5606f6a8d72f2d48f78a6c1fd401d45830c6919dd95c0c3149737cabaf2

    Score
    10/10
    crimsonratrat

    • CrimsonRAT Main Payload

    • CrimsonRat

      Crimson RAT is a malware linked to a Pakistani-linked threat actor.

      ratcrimsonrat

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks