Overview

overview

7

Static

static

3

CraxsRat.exe

windows10-1703-x64

7

CraxsRat.exe

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    CraxsRat.exe

  • Size

    41.8MB

  • Sample

    230718-swg65abf64

  • MD5

    13f7a89150f4d9014cc361333a11fda4

  • SHA1

    9ec23eead82b5407507f954f8246813467d1ee2e

  • SHA256

    4224619bd0192263ebc4fe70e1eef9bd3482ece592b20928680e281d8c58cda6

  • SHA512

    f747ad818a34ae3bdb45e9315b229738384fc72fa95f68826bfafe91771f495a18f07d8f418825fb49a07209bb2f017682035ef3d6db15843a040b908ce06db3

  • SSDEEP

    98304:r7fTTykeqo9xUZJkaOFPL7UcnFjBJvdg+2NVCCvdM2V51:r7fYzU8lF/UcnFjr72vNlHt

Score
7/10
microsoftphishing

Malware Config

Targets

    • Target

      CraxsRat.exe

    • Size

      41.8MB

    • MD5

      13f7a89150f4d9014cc361333a11fda4

    • SHA1

      9ec23eead82b5407507f954f8246813467d1ee2e

    • SHA256

      4224619bd0192263ebc4fe70e1eef9bd3482ece592b20928680e281d8c58cda6

    • SHA512

      f747ad818a34ae3bdb45e9315b229738384fc72fa95f68826bfafe91771f495a18f07d8f418825fb49a07209bb2f017682035ef3d6db15843a040b908ce06db3

    • SSDEEP

      98304:r7fTTykeqo9xUZJkaOFPL7UcnFjBJvdg+2NVCCvdM2V51:r7fYzU8lF/UcnFjr72vNlHt

    Score
    7/10
    microsoftphishing

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Detected potential entity reuse from brand microsoft.

      phishingmicrosoft
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks