Overview

overview

10

Static

static

cb21e1a00c...c7.exe

windows7-x64

1

cb21e1a00c...c7.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cb21e1a00c4e4a0e70f3cc95396382dba1782c789962544ec64b81453c84d2c7

  • Size

    939KB

  • Sample

    221130-xkhezahh5y

  • MD5

    e82a69162887a5979d6fd396117d7052

  • SHA1

    d6f489eea38eec8485bd447da0a73c64511b51c3

  • SHA256

    cb21e1a00c4e4a0e70f3cc95396382dba1782c789962544ec64b81453c84d2c7

  • SHA512

    33161293699e8c2bdd605603390bf2e5ce5f32d789b014bcd93a4cbe676f1fd9c8b73edc30235acbcc265bd9e90b0cb84238acc9d79b91123e2bdd96cc619358

  • SSDEEP

    6144:SmEB85lH1t7r81Zw/2II/8FtT5wkLB38Uq785t6lD68a8iV4Ifb8P8CkFts2pPYP:

Score
10/10
asyncratdefaultrat

Malware Config

Extracted

Family

asyncrat

Version

0.5.7B

Botnet

Default

C2

192.168.43.64:6606

Mutex

AsyncMutex_6SI8OkPnk

Attributes
  • delay

    3

  • install

    false

  • install_folder

    %AppData%

aes.plain

Targets

    • Target

      cb21e1a00c4e4a0e70f3cc95396382dba1782c789962544ec64b81453c84d2c7

    • Size

      939KB

    • MD5

      e82a69162887a5979d6fd396117d7052

    • SHA1

      d6f489eea38eec8485bd447da0a73c64511b51c3

    • SHA256

      cb21e1a00c4e4a0e70f3cc95396382dba1782c789962544ec64b81453c84d2c7

    • SHA512

      33161293699e8c2bdd605603390bf2e5ce5f32d789b014bcd93a4cbe676f1fd9c8b73edc30235acbcc265bd9e90b0cb84238acc9d79b91123e2bdd96cc619358

    • SSDEEP

      6144:SmEB85lH1t7r81Zw/2II/8FtT5wkLB38Uq785t6lD68a8iV4Ifb8P8CkFts2pPYP:

    Score
    10/10
    asyncratdefaultrat

    • AsyncRat

      AsyncRAT is designed to remotely monitor and control other computers.

      ratasyncrat

    • Async RAT payload

      rat

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks