General

  • Target

    Ta.zip

  • Size

    2.4MB

  • Sample

    230424-z1hf1sgd3x

  • MD5

    0d04ed02613ad4f4817d09021cdf02a5

  • SHA1

    682c022109dd97b65428965cbb0f7a9335a8f0a3

  • SHA256

    2d200e9f3549f94af4bd148fd30fe9efa275507b4c5de294a443c5ef26a7ffac

  • SHA512

    b234c2564557f6b3904f9cdff3fca73d3ffd4e61a152ac255ea1c07799c9d05b90d10f53b814d17e338be0397f2745dc0e85bde1ff036c4fe00877016e7d0531

  • SSDEEP

    12288:JkVLBIRebuLeTV0a7e9bjj8qjhTVhvxjwK2w6GPKFj6IW8cq22GG2:bRLqV37ojjJhBjwA2OIWEu

Score
10/10

Malware Config

Extracted

Family

asyncrat

Version

0.5.7B

Botnet

Default

C2

45.81.243.217:6606

45.81.243.217:7707

45.81.243.217:8808

Mutex

AsyncMutex_6SI8OkPnk

Attributes
  • delay

    3

  • install

    false

  • install_folder

    %AppData%

aes.plain

Targets

    • Target

      Ta.exe

    • Size

      1024.0MB

    • MD5

      7841eacef63a6f4203da320e03fdbc60

    • SHA1

      762b668217fc4820d2a0106838542edba45bf19a

    • SHA256

      ae481627b65fc50be282ae6c7ebe6233fce9a8deb514f88185ba5f06268479d9

    • SHA512

      6f6cfced96f027424f13e88a215d7793d013e90080c0e25fcef77ec25d46babfc3d752f0d8350018024557b3b32360a23830621943388357e7236396fc59a191

    • SSDEEP

      12288:d4mT/RcXtvyJdBQhXVQpYDv4alOZqby13caYgd2Ds2UZk:d4C/6XtvWBmQpYTFgcaYgd

    Score
    10/10
    • AsyncRat

      AsyncRAT is designed to remotely monitor and control other computers written in C#.

    • Async RAT payload

MITRE ATT&CK Matrix

Tasks