Overview

overview

10

Static

static

6257ab2654...e0.exe

windows7_x64

10

6257ab2654...e0.exe

windows10-2004_x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6257ab26547f390bfd67d60766a708a95998452eb487d6d7208a52dc3e9840e0

  • Size

    270KB

  • Sample

    220325-1xagnshgdk

  • MD5

    db12a808823a93d95a2eb9719e0e5122

  • SHA1

    5e2dcbddfd28c41bc6da89c3bbf1a9ac20b1080b

  • SHA256

    6257ab26547f390bfd67d60766a708a95998452eb487d6d7208a52dc3e9840e0

  • SHA512

    9817834daf4021b2510950ec1db6f9f905d122e1453ea170e9b9ef3c79c3871afcecfa6fd0a7937815c84a187250beca6102ef4d81a77ddff931a527407c4262

Score
10/10
crimsonratrat

Malware Config

Targets

    • Target

      6257ab26547f390bfd67d60766a708a95998452eb487d6d7208a52dc3e9840e0

    • Size

      270KB

    • MD5

      db12a808823a93d95a2eb9719e0e5122

    • SHA1

      5e2dcbddfd28c41bc6da89c3bbf1a9ac20b1080b

    • SHA256

      6257ab26547f390bfd67d60766a708a95998452eb487d6d7208a52dc3e9840e0

    • SHA512

      9817834daf4021b2510950ec1db6f9f905d122e1453ea170e9b9ef3c79c3871afcecfa6fd0a7937815c84a187250beca6102ef4d81a77ddff931a527407c4262

    Score
    10/10
    crimsonratrat

    • CrimsonRAT Main Payload

    • CrimsonRat

      Crimson RAT is a malware linked to a Pakistani-linked threat actor.

      ratcrimsonrat

    • Executes dropped EXE

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks