Overview

overview

10

Static

static

10

CharacterA...ot.exe

windows10-2004-x64

1

CharacterA...ot.pdb

windows10-2004-x64

3

Config.json

windows10-2004-x64

3

img/defaultAvatar.png

windows10-2004-x64

3

img/nopower.gif

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cAI-Discord-Win-x64.zip

  • Size

    34.9MB

  • Sample

    230403-rs2kxsgh71

  • MD5

    79dddf5f0ae514913c2d9d47d43c0dc6

  • SHA1

    ea9efe3c065b27dddb825aadc1264f473ef1c321

  • SHA256

    05cf3282318c903f325b31c8dd2a3d994606b3359f4cf80c409d5862a4ca03bb

  • SHA512

    b923f85c88959e0e634f9c4d547fdea2108f3d2a2f7732fa32b9c0383931bab3c0e8152e14a4d66e25c544e311052c1350651d56bf3268707189f7b3bd752bb0

  • SSDEEP

    786432:pP9M3l2UI3rX6rF7NgjLW5Vo9DODv4gvRzdBhp60Grs+rAfSnvrPBUlwE:pP9kl29X6o/RZODgOzdLpB+8fSnvrWb

Score
10/10
asyncratxwormrat

Malware Config

Targets

    • Target

      CharacterAI_Discord_Bot.exe

    • Size

      73.3MB

    • MD5

      13f61d12524db082d3b73c69d3c9ab24

    • SHA1

      80bc12bb62d9bc75a86df67bc487f033f800aeb4

    • SHA256

      46a7eb43ed3a3dec6b63de41e8879db68318da368a191c545c9ed2389b96b5f3

    • SHA512

      e1f19a3993a66cafeecea53c2bc508335a4b59793f339b68255938b6089f46066b1f2dcd50ddf9562c590cc9f4ee1c6efc29f9f6678b728ad029d83a2519555c

    • SSDEEP

      786432:hC5HAvMxYi3rtit6iLJjh5KM1jO0HjExm8:huHMrKoXN15tDEr

    Score
    1/10
    behavioral1

    • Target

      CharacterAI_Discord_Bot.pdb

    • Size

      30KB

    • MD5

      5a8138a6f573292a92518019f58e3ccd

    • SHA1

      cc76732bcb3bedc6d86f0d74c34c6745c584a1a8

    • SHA256

      f1e4589fda304c5b36f6bdd718f3c08cf9944758eecdd04f1aadc2aca55f8848

    • SHA512

      096935ddd99f128336c573275a5d7fdeb04ca38e98f472fcbadb6967e4ee4ea1e89e8565ced1a46bc881711ba100a305ba8c68e9b110c2d77163bf00ebb20c68

    • SSDEEP

      768:k9Azwc5iPHOU+vKoUBYm9gRnSPPov2/9XhMU5i9C:k9AzwjlxYmKSPPov2/9XhMU5i9C

    Score
    3/10
    behavioral2

    • Target

      Config.json

    • Size

      647B

    • MD5

      386dac513d86f5b11ccdf7046850ddb0

    • SHA1

      62137e4b55fb16ad9d5ee944653e4e6d37967d6c

    • SHA256

      74a6582e6c16a9885aa0d2c338ddcaf8227e9b1bcacfb8fc94ae89f6e314a8f7

    • SHA512

      c9d1c057a8dfb51898b8b589505a208c6089fe4ebad3c9c7d2da124095f9ff88dc8812b1b22ed0b7ff05d67b002d39aff47a0390bfe919c32fe3cf2324604454

    Score
    3/10
    behavioral3

    • Target

      img/defaultAvatar.png

    • Size

      15KB

    • MD5

      4b0344fcccfafbacc947efa51cd93714

    • SHA1

      149c95de6d2beff68d56eb903a1366839149a965

    • SHA256

      da1c225c3c2484d79640eb5e9bff1664a21ddd3f1f5e5c062db3e382cbca67bc

    • SHA512

      ffc721012c9a67cb18c2a113f404755a223038bccf8ed381ace8b3a3b04d57531d58ab920482577e53ab83ed436361b2324774d0e09c988481e0ba7e46a68037

    • SSDEEP

      384:EEzeJzMrlNuFCYodo6QAaDW36Zb6t3i9CZ+MurKKfgYke068lDc8:heFM5NuFCxdIAJ3By9o+MuNseUc8

    Score
    3/10
    behavioral4

    • Target

      img/nopower.gif

    • Size

      2.6MB

    • MD5

      c2c605a06d6f216d231a2f365429fded

    • SHA1

      4cebb89a3e95fd6bc52b9342e620c5ece6868fd1

    • SHA256

      255e907d2fd53b9a895573eb40bf94f2a4d0ea6bcdf080f0304bf4273c16f5ad

    • SHA512

      9824559bb3ca53ee67371b1d7cb0127d3e550cd3e46807b6c273bd14c8018480363f4c5f69311fc849b6d54c64824834cd8561195f1bb13d7aa4691ce76568c7

    • SSDEEP

      49152:BnB7CqeKlXvZX+FHT/7rzsMRsQEM7rle2NACH5H4LQ+zvV0aPsC9RmH:dB7CqtX+NT/gMRsI75jz2QhQRmH

    Score
    1/10
    behavioral5

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

System Information Discovery

4
T1082

Query Registry

1
T1012

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks