crimsonrat | a0632cecfd478fbef1a69daae3d760041c6af2cc88965633d3837e076793cc82 | Triage

Submit
Reports

Overview

overview

Static

static

1

a0632cecfd...2.xlam

windows7-x64

Resubmissions

15-11-2023 08:58

231115-kw7ssafc93 10

14-11-2023 09:28

231114-lfdqfaba74 10

Sharing

General

Target

a0632cecfd478fbef1a69daae3d760041c6af2cc88965633d3837e076793cc82.xlam
Size

3.4MB
Sample

231114-lfdqfaba74
MD5

41d801d96c9e27c5ca6c4678ffa2d7e2
SHA1

f8c6b5b4c520c2416bea015451cc8aca3283abe6
SHA256

a0632cecfd478fbef1a69daae3d760041c6af2cc88965633d3837e076793cc82
SHA512

58bfe64961ed881bb1489a5e298f4302d26568c770b5422aff36952514c33c91b588a000554e75581939b98185d2ca7681042e288215e8d62468f028bf8c847c
SSDEEP

98304:Wal3ZM+KyXAQ5036pRV4sWWL4lxoeF35abXerDX6:dM+Kg503C74uL4XD8qK

Score

10^/10

crimsonrat rat

Static task

static1

Behavioral task

behavioral1

Sample

a0632cecfd478fbef1a69daae3d760041c6af2cc88965633d3837e076793cc82.xlam

Resource

win7-20231023-en

windows7-x64

14 signatures

300 seconds

Malware Config

Extracted

Family

crimsonrat

C2

64.188.21.202

Targets

- Target
  
  a0632cecfd478fbef1a69daae3d760041c6af2cc88965633d3837e076793cc82.xlam
- Size
  
  3.4MB
- MD5
  
  41d801d96c9e27c5ca6c4678ffa2d7e2
- SHA1
  
  f8c6b5b4c520c2416bea015451cc8aca3283abe6
- SHA256
  
  a0632cecfd478fbef1a69daae3d760041c6af2cc88965633d3837e076793cc82
- SHA512
  
  58bfe64961ed881bb1489a5e298f4302d26568c770b5422aff36952514c33c91b588a000554e75581939b98185d2ca7681042e288215e8d62468f028bf8c847c
- SSDEEP
  
  98304:Wal3ZM+KyXAQ5036pRV4sWWL4lxoeF35abXerDX6:dM+Kg503C74uL4XD8qK
Score

10^/10

crimsonrat rat
- CrimsonRat
  Crimson RAT is a malware linked to a Pakistani-linked threat actor.
  rat crimsonrat
- Executes dropped EXE
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy