crimsonrat | 02fddfee4928270827be0b6be617661543eb59f4a0807047eacc05c8507d188b | Triage

Submit
Reports

Overview

overview

Static

static

02fddfee49...8b.exe

windows7_x64

02fddfee49...8b.exe

windows10_x64

Sharing

General

Target

02fddfee4928270827be0b6be617661543eb59f4a0807047eacc05c8507d188b
Size

1.1MB
Sample

220130-t9bf6sfdd8
MD5

7d61ca46b50982c962c63ee96547cae5
SHA1

c36c1533a67aae67fa9dd1c6ffe14609e40ccba7
SHA256

02fddfee4928270827be0b6be617661543eb59f4a0807047eacc05c8507d188b
SHA512

19295c894765f183ab8a31496dc3e563431cbe37cb159cd84bcc6e1859a3d14727377189456317d24751e9447eec27a19cb7d274732389f17215f070fab41651

Score

10^/10

crimsonrat rat

Static task

static1

Behavioral task

behavioral1

Sample

02fddfee4928270827be0b6be617661543eb59f4a0807047eacc05c8507d188b.exe

Resource

win7-en-20211208

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

02fddfee4928270827be0b6be617661543eb59f4a0807047eacc05c8507d188b.exe

Resource

win10-en-20211208

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  02fddfee4928270827be0b6be617661543eb59f4a0807047eacc05c8507d188b
- Size
  
  1.1MB
- MD5
  
  7d61ca46b50982c962c63ee96547cae5
- SHA1
  
  c36c1533a67aae67fa9dd1c6ffe14609e40ccba7
- SHA256
  
  02fddfee4928270827be0b6be617661543eb59f4a0807047eacc05c8507d188b
- SHA512
  
  19295c894765f183ab8a31496dc3e563431cbe37cb159cd84bcc6e1859a3d14727377189456317d24751e9447eec27a19cb7d274732389f17215f070fab41651
Score

10^/10

crimsonrat rat
- CrimsonRAT Main Payload
- CrimsonRat
  Crimson RAT is a malware linked to a Pakistani-linked threat actor.
  rat crimsonrat
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy