Overview

overview

10

Static

static

10

dridex

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    997a1ea14695bc0275446cd35e362ae48a4f3a6f108d91fea49ba1c83803edd1

  • Size

    74KB

  • MD5

    698832ef760cdc5bce0515c87619f503

  • SHA1

    70557bd8e2981696cf817ad1b27be1e21eb2174a

  • SHA256

    997a1ea14695bc0275446cd35e362ae48a4f3a6f108d91fea49ba1c83803edd1

  • SHA512

    63e5562d22509b07946882548be4c966e7dc3592f636382dfd597b175b922e27a7927ba53d0ff780eef0e6a1e04e3afb83cdaa367b2b15be953abeac99158d4c

  • SSDEEP

    1536:1UXkcxVKpC6yPMVKe9VdQuDI6H1bf/5/nQzcGLVclN:1U0cxVENyPMVKe9VdQsH1bfZnQfBY

Score
10/10
ratdefaultasyncrat

Malware Config

Extracted

Family

asyncrat

Version

Venom RAT + HVNC + Stealer + Grabber v6.0.1

Botnet

Default

C2

127.0.0.1:4449

127.0.0.1:2323

91.192.100.61:4449

91.192.100.61:2323

185.106.94.165:4449

185.106.94.165:2323
Mutex

zkohufvfmgkkczas

Attributes
  • delay

    1

  • install

    false

  • install_folder

    %AppData%

aes.plain

Signatures

  • Async RAT payload 1 IoCs
    rat
  • Asyncrat family
    asyncrat

Files

  • 997a1ea14695bc0275446cd35e362ae48a4f3a6f108d91fea49ba1c83803edd1
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections