General

  • Target

    hjSqjc3m.exe

  • Size

    45KB

  • Sample

    210421-abrtz9qe32

  • MD5

    ba7cb5ff54a1296f34dfdfcb14d92b6d

  • SHA1

    25283ac6db3616ad491e8194d3f9936fa86d473b

  • SHA256

    668d4a42b6e049ee80146d86f93c706a6598c90156b670b966a4a413a83e58d1

  • SHA512

    9f42d70a5c9d92636c7b38a94bac6c4f35395897f598edae0de566a9e17463bd59e56b85e1e1d3eabfe236c7ce9dfed07e3ff2fd66f8423d0744569758beb5b6

Score
10/10

Malware Config

Extracted

Family

asyncrat

Version

0.5.7B

C2

127.0.0.1:6606

127.0.0.1:7707

127.0.0.1:8808

127.0.0.1:6821

144.202.70.248:6606

144.202.70.248:7707

144.202.70.248:8808

144.202.70.248:6821

Mutex

Ts123

Attributes
  • aes_key

    cEKUVWlT6U2lktBTtK8EdfPCw2SB7k4d

  • anti_detection

    false

  • autorun

    false

  • bdos

    false

  • delay

    Default

  • host

    127.0.0.1,144.202.70.248

  • hwid

    3

  • install_file

  • install_folder

    %AppData%

  • mutex

    Ts123

  • pastebin_config

    null

  • port

    6606,7707,8808,6821

  • version

    0.5.7B

aes.plain

Targets

    • Target

      hjSqjc3m.exe

    • Size

      45KB

    • MD5

      ba7cb5ff54a1296f34dfdfcb14d92b6d

    • SHA1

      25283ac6db3616ad491e8194d3f9936fa86d473b

    • SHA256

      668d4a42b6e049ee80146d86f93c706a6598c90156b670b966a4a413a83e58d1

    • SHA512

      9f42d70a5c9d92636c7b38a94bac6c4f35395897f598edae0de566a9e17463bd59e56b85e1e1d3eabfe236c7ce9dfed07e3ff2fd66f8423d0744569758beb5b6

    Score
    1/10

MITRE ATT&CK Matrix

Tasks