Overview

overview

10

Static

static

10

Infected1.exe

windows7-x64

10

Infected1.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    Infected1.exe

  • Size

    63KB

  • MD5

    4d9ff51ca092640fd1626054c156051a

  • SHA1

    d5ccb341058dcc57032b0d48298e6c47a205ae9f

  • SHA256

    b79b8f0529f1f1a472effa6c5ec12fdc993f1bd0437fee6122659c3da7298463

  • SHA512

    6e7fcd6346d0b08faeb604aeff260636e98b385724418d0ff78a4712a1197c9194b0fad71ae1c13542caf94571f12671b29ff0afba47c2f8081ae0f7a9e7c3dc

  • SSDEEP

    1536:eEXi240TrRTsrHYUbOh95zouQdpqKmY7:eZXbYUbO1z2Gz

Score
10/10
ratdefaultasyncrat

Malware Config

Extracted

Family

asyncrat

Botnet

Default

C2

wasted9sss1-57562.portmap.host:57562

Mutex

ק德L4斯C05Bzjيا德q尺Qيi

Attributes
  • delay

    1

  • install

    false

  • install_folder

    %AppData%

aes.plain

Signatures

  • Async RAT payload 1 IoCs
    rat
  • Asyncrat family
    asyncrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • Infected1.exe
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections