crimsonrat | 4710d1b4feab4e2a66bb0f19f9a0b274a74ddaca72e684bf7ef8b8b9bb05e8a8 | Triage

Submit
Reports

Overview

overview

Static

static

Coast Guard HQ 10.exe

windows7_x64

Coast Guard HQ 10.exe

windows10_x64

Sharing

General

Target

4710d1b4feab4e2a66bb0f19f9a0b274a74ddaca72e684bf7ef8b8b9bb05e8a8
Size

558KB
Sample

220130-sjjt7acghk
MD5

ba1b8f8880d2cfd9795f9cdbac72de11
SHA1

03e66dec07498631dcf892956e00c4d64268a5d3
SHA256

4710d1b4feab4e2a66bb0f19f9a0b274a74ddaca72e684bf7ef8b8b9bb05e8a8
SHA512

2df8c7fb1bc6661b7f50a48c5818e7e7983815e6842d2e8ddefa47b1225e2fdb9dc84f5a0521db09a0df939e1b6380243485172c6bfd47dd4229956e9972264b

Score

10^/10

crimsonrat rat

Static task

static1

Behavioral task

behavioral1

Sample

Coast Guard HQ 10.exe

Resource

win7-en-20211208

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

Coast Guard HQ 10.exe

Resource

win10-en-20211208

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  Coast Guard HQ 10.exe
- Size
  
  1.0MB
- MD5
  
  b7c83538606a08f71107a5202acdb57a
- SHA1
  
  4bb1c28653a1754fd71d57d6deb51d281c21b43d
- SHA256
  
  7de78f7c806f828ef071a103b7be87636414635e008ea2463bf33077a466140a
- SHA512
  
  428fe43f1a9e9b7f81d68ebc1c1df9bd1eae7b25144d39def9f524a0250b39012b6c1d2044d4530d8413039d514da8148847018d216012d5cf560632587e4afd
Score

10^/10

crimsonrat rat
- CrimsonRAT Main Payload
- CrimsonRat
  Crimson RAT is a malware linked to a Pakistani-linked threat actor.
  rat crimsonrat
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy