Overview

overview

10

Static

static

10

c2cda60025...28.exe

windows7-x64

10

c2cda60025...28.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    07623599.bin

  • Size

    35KB

  • Sample

    230605-ntgqcsgc95

  • MD5

    61fa11f0abf4cacf92851b3278ec8f31

  • SHA1

    8ec1efb263926f8b2ee4e9f4df8cee0126b58ab8

  • SHA256

    72005c0a822b2d771d0d5181c7fbf6c970b8f8aa890fc1c04e9b3cbd3aa58824

  • SHA512

    1b0b7fc69326c1b77b31f284e8acca71c1380419c3120b50b22f08aefc2cdbe7ba4553acc10465a7b1e92f0e3e2af8450ce18b0a537d97d4b6489a06d69a5035

  • SSDEEP

    768:AOL2Ce8F+jFVgEA2QXQtAOPup5N+HiJfpYizkYUQSJrPWtgxZyJiP:AOLuMuDzR5tAOmpv+CHYizkXVPegxZyA

Score
10/10
asyncratnew rai tayrat

Malware Config

Extracted

Family

asyncrat

Version

Venom RAT + HVNC + Stealer + Grabber v6.0.1

Botnet

new rai tay

C2

144.202.52.245:4449

Mutex

clfdboaluvjjxdlt

Attributes
  • delay

    1

  • install

    true

  • install_file

    kyovn.exe

  • install_folder

    %Temp%

aes.plain

Targets

    • Target

      c2cda600256314b688cf195f809356e2592ba8df9de9c2b1a117a0ee26ccfa28.exe

    • Size

      74KB

    • MD5

      4c479566473499949657c49a04f56822

    • SHA1

      ad4522e154a6926728939503763786e8898b745d

    • SHA256

      c2cda600256314b688cf195f809356e2592ba8df9de9c2b1a117a0ee26ccfa28

    • SHA512

      62f9d72d5955e367268a462f0110e9a3fd6db57987541b89c64e619a3ef77b1af56f66f449496ea4b64a27d76c4932760b364ee035f08950aae6efde81305401

    • SSDEEP

      1536:SUvQcxyN1hJC1GPMVNedj/aLEgIPH1br/JIH9AQzcGLVclN:SUYcxyNl+GPMVO/vVH1brBIHmQfBY

    Score
    10/10
    asyncratnew rai tayrat

    • AsyncRat

      AsyncRAT is designed to remotely monitor and control other computers written in C#.

      ratasyncrat

    • Async RAT payload

      rat
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks