Extracted

Extracted

• • Target

    Venom Control Client‮nls..scr

  • Size

    571KB

  • MD5

    f1bc7841474849a77e8e0b2e507f2ac7

  • SHA1

    eea072584a9227f763d15d784eb52c64453c9505

  • SHA256

    3b2776d93feca48f02f530dff6a3d4d918d94ce4e61c249b9f51f24d1d090d74

  • SHA512

    e9d342ea6620fc1b69868d5b503363a685a50e7184ba28c310f9648b85ebbb3684eb5be08ff5dd678e1026499fe2c562eb45b0c28228e96b7746553f6a1d12b7

  • SSDEEP

    12288:C7oVrmFrSStI0kPUjGn61DfVwZ3pSOPXb2c1wxC3Si+hjTO6HH:3i/i4Jt9wZ3/bTwxQgVTOOH

  Score

  10^/10

  upxasyncratmicrosoftedgmicrosoftedgerat

  • AsyncRat

    AsyncRAT is designed to remotely monitor and control other computers written in C#.

    ratasyncrat

  • Async RAT payload

    rat

  • Downloads MZ/PE file

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Drops startup file

  • Executes dropped EXE

  • UPX packed file

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  behavioral1behavioral2behavioral3