asyncrat | efcdf30c07197ad6dc12efb326db35a5acc90eb47cedba517f97627e48c1d251 | Triage

Sharing

General

Target

cf3d25b6a7ff0c484fc01eece1d119b2.exe
Size

150KB
Sample

201225-5ltkxcy992
MD5

cf3d25b6a7ff0c484fc01eece1d119b2
SHA1

a9594546d8931c3e8c49ae8ed63cf19d09813626
SHA256

efcdf30c07197ad6dc12efb326db35a5acc90eb47cedba517f97627e48c1d251
SHA512

884ca9ec20ed10ea23b13cc6396af2e548f1fc3b30a7598ec776ccd18b9cb69c18f7cddfaa1c131ca4aae58e3e26b1888a15c9def72bfbe7f6e988c8b6d489b6

Score

10^/10

asyncrat rat

Malware Config

Extracted

Family

asyncrat

Version

0.5.7B

C2

monodofus.hopto.org:6606

Mutex

AsyncMutex_6SI8OkPnk

Attributes

aes_key
LDDgTQDISdpb3P4AdWiSDf9IAt79JD6i
anti_detection
false
autorun
false
bdos
false
delay
Default
host
monodofus.hopto.org
hwid
3
install_file
install_folder
%AppData%
mutex
AsyncMutex_6SI8OkPnk
pastebin_config
null
port
6606
version
0.5.7B

aes.plain

Targets

- Target
  
  cf3d25b6a7ff0c484fc01eece1d119b2.exe
- Size
  
  150KB
- MD5
  
  cf3d25b6a7ff0c484fc01eece1d119b2
- SHA1
  
  a9594546d8931c3e8c49ae8ed63cf19d09813626
- SHA256
  
  efcdf30c07197ad6dc12efb326db35a5acc90eb47cedba517f97627e48c1d251
- SHA512
  
  884ca9ec20ed10ea23b13cc6396af2e548f1fc3b30a7598ec776ccd18b9cb69c18f7cddfaa1c131ca4aae58e3e26b1888a15c9def72bfbe7f6e988c8b6d489b6
Score

10^/10

asyncrat rat
- AsyncRat
  AsyncRAT is designed to remotely monitor and control other computers.
  rat asyncrat
- Async RAT payload
  rat
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2