Behavioral task
behavioral1
Sample
YwA9P9GL.exe
Resource
win7v20210408
windows7_x64
0 signatures
0 seconds
General
-
Target
YwA9P9GL.exe
-
Size
45KB
-
MD5
6db7243ba921ced4373744c97ab46d34
-
SHA1
686d7919c4e463ef2eb6cbe4c4614d4404afc0ee
-
SHA256
e706bf49908519c14eb135357c5cd822be3f139be7365a94081b54342db0eb91
-
SHA512
3358c537bfb1b54394cf6353666ada75a6edc96c671a868d6b0ab7477fc33c2a55cc700e1403978e958652689e08378755a0ad6c8d57fff1cb48392a167aa8df
Malware Config
Extracted
Family
asyncrat
Version
0.5.7B
C2
tayfagreatie.duckdns.org:5967
Mutex
AsyncMutex_6SI8OkPnk
Attributes
-
aes_key
k0iWlDi4NY1uCAjZZInsuBfBEYEnCRJn
-
anti_detection
false
-
autorun
false
-
bdos
false
-
delay
Default
-
host
tayfagreatie.duckdns.org
-
hwid
3
- install_file
-
install_folder
%AppData%
-
mutex
AsyncMutex_6SI8OkPnk
-
pastebin_config
null
-
port
5967
-
version
0.5.7B
aes.plain
Signatures
Files
-
YwA9P9GL.exe.exe windows x86