asyncrat | b3b9ee842419a726e1c9a74e01269ffa26390eb844e55be2f5ce13aae7a8b4c3 | Triage

Sharing

General

Target

b3b9ee842419a726e1c9a74e01269ffa26390eb844e55be2f5ce13aae7a8b4c3
Size

1.8MB
Sample

221007-r9cywschfq
MD5

9625eb1e116761706267fec1f9bf09dd
SHA1

71c835d1859fe00b14c0926d071f38740b146b9f
SHA256

b3b9ee842419a726e1c9a74e01269ffa26390eb844e55be2f5ce13aae7a8b4c3
SHA512

febf4fcf3686dd17b42738385ddb029990448afd0c4fa39676fa2a44a0eac93797e55f30a693e4fdc7db24d5a41a16c585b6088c377b53b532188139acad153f
SSDEEP

24576:aVNf352ofv3v2rWhu4A3CG4h8xgFIfVVH1XkID19XdwuXOkEuJ:aVNf30on3vbu4+CUgFItZ10ID19tnJ

Score

10^/10

asyncrat default rat

Malware Config

Extracted

Family

asyncrat

Version

大灰狼远控

Botnet

Default

C2

58.221.58.124:8848

Mutex

DcRatMutex

Attributes

delay
1
install
false
install_folder
%AppData%

aes.plain

Targets

- Target
  
  b3b9ee842419a726e1c9a74e01269ffa26390eb844e55be2f5ce13aae7a8b4c3
- Size
  
  1.8MB
- MD5
  
  9625eb1e116761706267fec1f9bf09dd
- SHA1
  
  71c835d1859fe00b14c0926d071f38740b146b9f
- SHA256
  
  b3b9ee842419a726e1c9a74e01269ffa26390eb844e55be2f5ce13aae7a8b4c3
- SHA512
  
  febf4fcf3686dd17b42738385ddb029990448afd0c4fa39676fa2a44a0eac93797e55f30a693e4fdc7db24d5a41a16c585b6088c377b53b532188139acad153f
- SSDEEP
  
  24576:aVNf352ofv3v2rWhu4A3CG4h8xgFIfVVH1XkID19XdwuXOkEuJ:aVNf30on3vbu4+CUgFItZ10ID19tnJ
Score

10^/10

asyncrat default rat
- AsyncRat
  AsyncRAT is designed to remotely monitor and control other computers.
  rat asyncrat
- Async RAT payload
  rat
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

asyncratdefaultrat

behavioral2