asyncrat | 5a6b14de8a0e73a2e095d14ca488c7e06015149697e9c63b8a613ee771d33279 | Triage

Sharing

General

Target

1192-102-0x0000000000400000-0x0000000000412000-memory.dmp
Size

72KB
Sample

220630-vrkgssdebj
MD5

fc588f942666f24dbaf819c881200745
SHA1

2c05ebeb52dfeb90cefdd6c35e16f83f69d322a7
SHA256

5a6b14de8a0e73a2e095d14ca488c7e06015149697e9c63b8a613ee771d33279
SHA512

796d111f32256711578aa53609a82f72489b983c550287fe25928910b0a01c9542902de44e193345b0997523c42102861a32184e1e8be8dfc90b3a4018668753

Score

10^/10

asyncrat default rat

Malware Config

Extracted

Family

asyncrat

Version

0.5.7B

Botnet

Default

C2

127.0.0.1:6606

127.0.0.1:7707

127.0.0.1:8808

127.0.0.1:1111

62.197.136.167:6606

62.197.136.167:7707

62.197.136.167:8808

62.197.136.167:1111

Mutex

AsyncMutex_6SI8OkPnk

Attributes

delay
3
install
false
install_folder
%AppData%

aes.plain

Targets

- Target
  
  1192-102-0x0000000000400000-0x0000000000412000-memory.dmp
- Size
  
  72KB
- MD5
  
  fc588f942666f24dbaf819c881200745
- SHA1
  
  2c05ebeb52dfeb90cefdd6c35e16f83f69d322a7
- SHA256
  
  5a6b14de8a0e73a2e095d14ca488c7e06015149697e9c63b8a613ee771d33279
- SHA512
  
  796d111f32256711578aa53609a82f72489b983c550287fe25928910b0a01c9542902de44e193345b0997523c42102861a32184e1e8be8dfc90b3a4018668753
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

ratdefaultasyncrat

behavioral1

behavioral2