Overview

overview

10

Static

static

10

Stub.exe

windows10-1703-x64

10

Stub.exe

windows7-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    Stub.exe

  • Size

    140KB

  • MD5

    6161929682e03089dd427ccc4e79bf2f

  • SHA1

    c390e5c8e5dded281a4c38eb17912616bb2c6142

  • SHA256

    1783b091f616ba99156c5a328c32c284ca29e922a05e55de0ee3158fa9f85d8f

  • SHA512

    57e1edca7cbba6462ec043d5ad59a1b6d5dc8b62cc76be85835ed5ff6e7a9d5507fe06f1ec377f7be63efb791d2ac4e75c60b6b98a5417b495660ed485f56eda

  • SSDEEP

    3072:CI1DBkDucJymzyx1bq/0HHJquoPFtFtUMnbaarpm:XnZL1bfHHJquoPFtFtUMnbal

Score
10/10
ratmar27asyncrat

Malware Config

Extracted

Family

asyncrat

Version

v0.2

Botnet

mar27

C2

chimpail.com:53245

aghbh73ehefiv787ywe8ads.com:53245

o8i9asf86v76t3y67t63gg.cn:53245
Mutex

afgj6j3umd5uk

Attributes
  • delay

    3

  • install

    false

  • install_folder

    %AppData%

aes.plain

Signatures

  • Async RAT payload 1 IoCs
    rat
  • Asyncrat family
    asyncrat

Files

  • Stub.exe
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections