General
-
Target
bLhM.exe
-
Size
45KB
-
Sample
230402-shwglaac6y
-
MD5
ec15f6dcfb1e13d5cc6eb8785b5f3de4
-
SHA1
6ba1d3af7195151ea2bff44d817ea628349155f9
-
SHA256
1ea51ffeedaf6acd0283aa25275ed87d7514659a90449bcd40d236e2fd8026d1
-
SHA512
10aaa43a32e9211bd876f02cf1ee8f9ee8787caf9db71db1e275f16f4bc03d1ad759c1aa496944974769799da4af96d23041d864c49aed0e3853d8b46339ee00
-
SSDEEP
768:Pu/6ZTgoiziWUUM9rmo2qrjO5QyJ4PiNjPISzjbwgX3ide+u0ljCQ14AkIMEzBDD:Pu/6ZTgle2IO52iKS3b3XSdeBhAkUVdl
Behavioral task
behavioral1
Sample
bLhM.exe
Resource
win7-20230220-en
Malware Config
Extracted
asyncrat
0.5.7B
03Pjoa23
4Mekey.myftp.biz:6606
4Mekey.myftp.biz:7707
4Mekey.myftp.biz:8808
AsyncMutex_6SI8OkPnk
-
delay
3
-
install
false
-
install_folder
%AppData%
Targets
-
-
Target
bLhM.exe
-
Size
45KB
-
MD5
ec15f6dcfb1e13d5cc6eb8785b5f3de4
-
SHA1
6ba1d3af7195151ea2bff44d817ea628349155f9
-
SHA256
1ea51ffeedaf6acd0283aa25275ed87d7514659a90449bcd40d236e2fd8026d1
-
SHA512
10aaa43a32e9211bd876f02cf1ee8f9ee8787caf9db71db1e275f16f4bc03d1ad759c1aa496944974769799da4af96d23041d864c49aed0e3853d8b46339ee00
-
SSDEEP
768:Pu/6ZTgoiziWUUM9rmo2qrjO5QyJ4PiNjPISzjbwgX3ide+u0ljCQ14AkIMEzBDD:Pu/6ZTgle2IO52iKS3b3XSdeBhAkUVdl
-
Async RAT payload
-