Overview

overview

10

Static

static

10

dridex

windows10-2004_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9d17ef60c2fe51c9ddd8c03a519059d3eddfd2ac8803ac5d7d91a71075810887

  • Size

    63KB

  • Sample

    220130-p7ptkabchl

  • MD5

    291f186dea7b135c382eafe1ff1d3abf

  • SHA1

    a3a9d711416c4eb20174bedae0c5dbccf87bc0c7

  • SHA256

    9d17ef60c2fe51c9ddd8c03a519059d3eddfd2ac8803ac5d7d91a71075810887

  • SHA512

    025bb4070af4cecbe260d7e2ea8781f8fadbd51f7588f8ecdcd3a1d8d529359acfcc993060ed01084854fa97d82d108ee51692896f75f03baa1091680ac06008

Score
10/10
asyncratdefaultrat

Malware Config

Extracted

Family

asyncrat

Version

1.0.7

Botnet

Default

C2

bigrussianfloppa.duckdns.org:228

bigrussianfloppa.duckdns.org:901
Mutex

Mutex_qwqdanchun

Attributes
  • anti_vm

    false

  • bsod

    false

  • delay

    1

  • install

    true

  • install_file

    Churkaebanaya.exe

  • install_folder

    %AppData%

  • pastebin_config

    null

aes.plain

Targets

    • Target

      9d17ef60c2fe51c9ddd8c03a519059d3eddfd2ac8803ac5d7d91a71075810887

    • Size

      63KB

    • MD5

      291f186dea7b135c382eafe1ff1d3abf

    • SHA1

      a3a9d711416c4eb20174bedae0c5dbccf87bc0c7

    • SHA256

      9d17ef60c2fe51c9ddd8c03a519059d3eddfd2ac8803ac5d7d91a71075810887

    • SHA512

      025bb4070af4cecbe260d7e2ea8781f8fadbd51f7588f8ecdcd3a1d8d529359acfcc993060ed01084854fa97d82d108ee51692896f75f03baa1091680ac06008

    Score
    10/10
    asyncratdefaultrat

    • AsyncRat

      AsyncRAT is designed to remotely monitor and control other computers.

      ratasyncrat

    • Async RAT payload

      rat
    behavioral1

MITRE ATT&CK Matrix

Tasks