bc0c6f07b05e4c29bae36fedd9e58e1cd0148d777a68d50ec5104567d9e3ce43

General
Target

bc0c6f07b05e4c29bae36fedd9e58e1cd0148d777a68d50ec5104567d9e3ce43

Size

268KB

Sample

220212-lqy45acdcq

Score
10 /10
MD5

cbad7cf8227cbce947d387ffe948afc8

SHA1

09a7a7b0ea83d15caef4b8bb58425c96a8dab7e2

SHA256

9bb04d78c662b9a3f17b65ab0e84df9fc740e08bfb0db9d6b8778b3defa9381d

SHA512

4c648683813ad6a57aaf7cbdea6a55967e8599605535ca995171df2cb8208d859a5ecaccc14f37280bc34784b195cc4596bac5f0698db49e531d3f6743e36611

Malware Config

Extracted

Family asyncrat
Version 0.5.7B
Botnet 1
C2

212.193.30.54:8754
Attributes
anti_vm
false
bsod
false
delay
3
install
false
install_folder
%AppData%
pastebin_config
null
aes.plain
Targets
Target

bc0c6f07b05e4c29bae36fedd9e58e1cd0148d777a68d50ec5104567d9e3ce43

MD5

5cdfcd6d591946dec15cec637f7826e6

Filesize

309KB

Score
10/10
SHA1

7959aeda9d64e19b9eeed15003c49a0c62eadf45

SHA256

bc0c6f07b05e4c29bae36fedd9e58e1cd0148d777a68d50ec5104567d9e3ce43

SHA512

e8a3363aaaecc5902aa93b4754d24e03c86cabe4132f6aa0111c8b575fcfa5b0e1ff7127279f0808f83c01547e043efffe628207272d1d61aa8697c926ac194b

Tags

Signatures

  • AsyncRat

    Description

    AsyncRAT is designed to remotely monitor and control other computers.

    Tags

  • Async RAT payload

    Tags

  • Checks computer location settings

    Description

    Looks up country code configured in the registry, likely geofence.

    TTPs

    Query RegistrySystem Information Discovery

  • Adds Run key to start application

    Tags

    TTPs

    Registry Run Keys / Startup FolderModify Registry

  • Suspicious use of SetThreadContext

Related Tasks

behavioral1behavioral2
MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
        Discovery
        Execution
          Exfiltration
            Impact
              Initial Access
                Lateral Movement
                  Persistence
                  Privilege Escalation
                    Tasks

                    static1

                    behavioral1

                    10/10

                    behavioral2

                    10/10