General
-
Target
PaymentAdvice.pdf.exe
-
Size
466KB
-
Sample
220131-h6m51shcd4
-
MD5
936a2b0bca688de0ea619f967ba6e713
-
SHA1
135f50d2dc2387df84aaeb7a50610b0a47ccf65e
-
SHA256
a678300e6317d7a0354316b152e371f9c21f4afc39cc9c058a56f224fd4a90a7
-
SHA512
3f6b8bc68ec8d94386c8df4bd53b2c9f6b711c570115b6d200e5140bfd3599476a8b7de7067216238b4793cbaba835c6e11f552ab2777a08f8c8f888fa0e2437
Malware Config
Targets
-
-
Target
PaymentAdvice.pdf.exe
-
Size
466KB
-
MD5
936a2b0bca688de0ea619f967ba6e713
-
SHA1
135f50d2dc2387df84aaeb7a50610b0a47ccf65e
-
SHA256
a678300e6317d7a0354316b152e371f9c21f4afc39cc9c058a56f224fd4a90a7
-
SHA512
3f6b8bc68ec8d94386c8df4bd53b2c9f6b711c570115b6d200e5140bfd3599476a8b7de7067216238b4793cbaba835c6e11f552ab2777a08f8c8f888fa0e2437
Score10/10-
AsyncRat
AsyncRAT is designed to remotely monitor and control other computers.
-
Async RAT payload
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Suspicious use of SetThreadContext
-