asyncrat | af0a5edc981e2d045ee6060b1a3258d8699651651c4a8846891e58221d31dbb7 | Triage

Submit
Reports

Overview

overview

Static

static

7

af0a5edc98...b7.exe

windows7-x64

af0a5edc98...b7.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

af0a5edc981e2d045ee6060b1a3258d8699651651c4a8846891e58221d31dbb7
Size

409KB
Sample

231120-jxpg6afd21
MD5

585461dbe8526cd6944bea3752f8021a
SHA1

3981ab901d093d98fd83bb7409d5430f63fcdf3a
SHA256

af0a5edc981e2d045ee6060b1a3258d8699651651c4a8846891e58221d31dbb7
SHA512

b5582999235b50f393d24ff743464211acc08dedb31af5ef16098819f68fb53d63d5c0c09e2064cd799528f9d9c41a6836fe711e19a045827432d52c8da9e761
SSDEEP

6144:DGz0wJUkCpNLNaoSr+i67svkD2cBJL0Z3rKSRq:0lqkCnNaoSaimsMD2tBq

Score

10^/10

asyncrat default discovery rat upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

af0a5edc981e2d045ee6060b1a3258d8699651651c4a8846891e58221d31dbb7.exe

Resource

win7-20231020-en

asyncrat default discovery rat upx

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

af0a5edc981e2d045ee6060b1a3258d8699651651c4a8846891e58221d31dbb7.exe

Resource

win10v2004-20231023-en

asyncrat default discovery rat upx

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Extracted

Family

asyncrat

Botnet

Default

C2

206.233.240.31:4449

Mutex

uomhmqqbwgpdpnrb

Attributes

delay
1
install
false
install_folder
%AppData%

aes.plain

Targets

- Target
  
  af0a5edc981e2d045ee6060b1a3258d8699651651c4a8846891e58221d31dbb7
- Size
  
  409KB
- MD5
  
  585461dbe8526cd6944bea3752f8021a
- SHA1
  
  3981ab901d093d98fd83bb7409d5430f63fcdf3a
- SHA256
  
  af0a5edc981e2d045ee6060b1a3258d8699651651c4a8846891e58221d31dbb7
- SHA512
  
  b5582999235b50f393d24ff743464211acc08dedb31af5ef16098819f68fb53d63d5c0c09e2064cd799528f9d9c41a6836fe711e19a045827432d52c8da9e761
- SSDEEP
  
  6144:DGz0wJUkCpNLNaoSr+i67svkD2cBJL0Z3rKSRq:0lqkCnNaoSaimsMD2tBq
Score

10^/10

asyncrat default discovery rat upx
- AsyncRat
  AsyncRAT is designed to remotely monitor and control other computers written in C#.
  rat asyncrat
- Async RAT payload
  rat
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

asyncratdefaultdiscoveryratupx

behavioral2

asyncratdefaultdiscoveryratupx

© 2018-2025

Terms | Privacy