crimsonrat | f29895d3fd197101aa284f5076a40e4e951614a7faaf214254488879b2e235f3 | Triage

Submit
Reports

Overview

overview

Static

static

f29895d3fd...f3.exe

windows7_x64

f29895d3fd...f3.exe

windows10_x64

Sharing

General

Target

f29895d3fd197101aa284f5076a40e4e951614a7faaf214254488879b2e235f3
Size

1.1MB
Sample

220130-t1eggaeccr
MD5

29fca616297a9c37e800cdc7b654bc6a
SHA1

40e353837ce0924b3b86badabfafe7597929aff9
SHA256

f29895d3fd197101aa284f5076a40e4e951614a7faaf214254488879b2e235f3
SHA512

2532bbce592e94a8eac3668da048dc87ccf632cdc65d2edfeda380f767e71f21854fa53354463b1d980fdedeab1ec5ac11f244da035c8f66e9a14397adf0fcb1

Score

10^/10

crimsonrat rat

Static task

static1

Behavioral task

behavioral1

Sample

f29895d3fd197101aa284f5076a40e4e951614a7faaf214254488879b2e235f3.exe

Resource

win7-en-20211208

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

f29895d3fd197101aa284f5076a40e4e951614a7faaf214254488879b2e235f3.exe

Resource

win10-en-20211208

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  f29895d3fd197101aa284f5076a40e4e951614a7faaf214254488879b2e235f3
- Size
  
  1.1MB
- MD5
  
  29fca616297a9c37e800cdc7b654bc6a
- SHA1
  
  40e353837ce0924b3b86badabfafe7597929aff9
- SHA256
  
  f29895d3fd197101aa284f5076a40e4e951614a7faaf214254488879b2e235f3
- SHA512
  
  2532bbce592e94a8eac3668da048dc87ccf632cdc65d2edfeda380f767e71f21854fa53354463b1d980fdedeab1ec5ac11f244da035c8f66e9a14397adf0fcb1
Score

10^/10

crimsonrat rat
- CrimsonRAT Main Payload
- CrimsonRat
  Crimson RAT is a malware linked to a Pakistani-linked threat actor.
  rat crimsonrat
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy