Overview

overview

10

Static

static

10

9c00e494b3...5a.exe

windows7-x64

1

9c00e494b3...5a.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9c00e494b3feaa22c80249b20f00ff5a

  • Size

    9.3MB

  • MD5

    9c00e494b3feaa22c80249b20f00ff5a

  • SHA1

    d284c6a0940ed2e74ceb14c6cd652b100c658def

  • SHA256

    cf6472fb10e47faeef00184b1972812a5fb22410736d1b0cd541872524f7d772

  • SHA512

    c123b60ebf6004116c684da51f23d20ffd8ad4281a657d373618499c6820e79156376fcdca038eda62b063a22ef643c60465e255d9a07d9d1207e829d83a6b46

  • SSDEEP

    24576:vpQvsBb0CTRB/p/X/p/9/p/X/p/L/p/X/p/L/p/X/p/9/p/X/p/L/p/X/p/1/p/t:vpQvsBb0CTR

Score
10/10
crimsonrat

Malware Config

Extracted

Family

crimsonrat

C2

173.249.22.30

Signatures

  • CrimsonRAT main payload 1 IoCs
  • Crimsonrat family
    crimsonrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 9c00e494b3feaa22c80249b20f00ff5a
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections