General

  • Target

    NHax.exe

  • Size

    48KB

  • Sample

    230307-flpf8sgc91

  • MD5

    ccbb2b7a9fb0144b005366aa37e0b473

  • SHA1

    67408331198c7236ce888a5cb1511250faeb3808

  • SHA256

    c4be5307fb4c8d0498e1ed3e66bfad5d5e63ff6db00952b88ab03a7f2aa8d078

  • SHA512

    23bfd6fed866b2f6ec3dcd397ae5cb54a9db4caa52860ca5f00bf4a9ba93ac7a976d2a360f1bb0845d999c38b1878fb251fad155c529eaa4ed56665f52b3c1ec

  • SSDEEP

    768:jCT3ILNCKi+DivPPqtVi3m8YbOgevl+olFEvEgK/Jx4Vc6KN:jCYmvHMzbxg8olFEnkJx4VclN

Score
10/10

Malware Config

Extracted

Family

asyncrat

Version

1.0.7

Botnet

Default

C2

monkeys11-39982.portmap.host:39982

Mutex

DcRatMutex_qwqdanchun

Attributes
  • delay

    1

  • install

    false

  • install_folder

    %AppData%

aes.plain

Targets

    • Target

      NHax.exe

    • Size

      48KB

    • MD5

      ccbb2b7a9fb0144b005366aa37e0b473

    • SHA1

      67408331198c7236ce888a5cb1511250faeb3808

    • SHA256

      c4be5307fb4c8d0498e1ed3e66bfad5d5e63ff6db00952b88ab03a7f2aa8d078

    • SHA512

      23bfd6fed866b2f6ec3dcd397ae5cb54a9db4caa52860ca5f00bf4a9ba93ac7a976d2a360f1bb0845d999c38b1878fb251fad155c529eaa4ed56665f52b3c1ec

    • SSDEEP

      768:jCT3ILNCKi+DivPPqtVi3m8YbOgevl+olFEvEgK/Jx4Vc6KN:jCYmvHMzbxg8olFEnkJx4VclN

    Score
    10/10
    • AsyncRat

      AsyncRAT is designed to remotely monitor and control other computers written in C#.

    • Async RAT payload

MITRE ATT&CK Matrix

Tasks