General

  • Target

    f7fe46d344a5f172defc4734e4202600

  • Size

    622KB

  • Sample

    220126-grf8gsheek

  • MD5

    f7fe46d344a5f172defc4734e4202600

  • SHA1

    48b235f7391897a74388298f1bacced653a48d09

  • SHA256

    f65b4e4e128658c16a312b6b69a607661e09666ee2da27e74ed2023f563fbd23

  • SHA512

    6dc0db08f014d435e840b1154757d70912c0da2765a6f892977619b2bfe0acde604197530323403f06fe3801cb1ad39c6991a3039201fc73072aa62a47802b8c

Score
10/10

Malware Config

Targets

    • Target

      f7fe46d344a5f172defc4734e4202600

    • Size

      622KB

    • MD5

      f7fe46d344a5f172defc4734e4202600

    • SHA1

      48b235f7391897a74388298f1bacced653a48d09

    • SHA256

      f65b4e4e128658c16a312b6b69a607661e09666ee2da27e74ed2023f563fbd23

    • SHA512

      6dc0db08f014d435e840b1154757d70912c0da2765a6f892977619b2bfe0acde604197530323403f06fe3801cb1ad39c6991a3039201fc73072aa62a47802b8c

    Score
    10/10
    • AsyncRat

      AsyncRAT is designed to remotely monitor and control other computers.

    • Async RAT payload

    • Executes dropped EXE

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix ATT&CK v6

Execution

Scheduled Task

1
T1053

Persistence

Scheduled Task

1
T1053

Privilege Escalation

Scheduled Task

1
T1053

Discovery

System Information Discovery

1
T1082

Tasks