General
-
Target
setup.exe
-
Size
696KB
-
MD5
06dff227eb1af54bfb0c50fc2affff9b
-
SHA1
b6e7415383e058088e4e569480154f019c5e7f62
-
SHA256
4473deda804fd3e81f339e24a0cae78595940139eb776fec8f002a1874b04d30
-
SHA512
5e2b78a89d4dab15b61c45b466d71dd33dcf3ee684cdc207a4b2c8ba4f170291e421c055e3eba5fdd964672785cab7352a852ec142c5e7d91b183ec96bc809ef
-
SSDEEP
12288:iOLsHy9G6DMz39G6DMzgMMHMMMyMMMZMMMVcR9bzeXOMMHMMMyMMMZMMMVcR9bzK:fQ+GLpGLMMMHMMMvMMZMMMKzbKXOMMH5
Score
10/10
Malware Config
Extracted
Family
asyncrat
Version
0.5.7B
Botnet
Default
C2
45.66.248.114:8899
Mutex
AsyncMutex_6SI8OkPnk
Attributes
-
delay
3
-
install
false
-
install_folder
%AppData%
aes.plain
Signatures
-
Async RAT payload 1 IoCs
-
Asyncrat family
Files
-
setup.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections