General

  • Target

    1e5f16d4bcd20e024c19c72dee0e2be65f331c15018e15da00f3d67394116878

  • Size

    881KB

  • Sample

    240118-ntf4tsaffl

  • MD5

    2cafa3956dca99912c10b3d2346228f5

  • SHA1

    233b9cd85537d719df2a3df3db2e4e8cb832776b

  • SHA256

    1e5f16d4bcd20e024c19c72dee0e2be65f331c15018e15da00f3d67394116878

  • SHA512

    cb6f5254825959cf6cde9d3565d7e5dec8e4ca172e3978a2b9d29f131081c3e311ac8b05c5660709c3dbd457ad8900c272719817c98b1df153dc88808bc6c648

  • SSDEEP

    24576:kWdsCIOqnXKuJz7kJ4o0QZfXD893WyiWy1tO:TsCIOqnXKBXRm9

Malware Config

Extracted

Family

asyncrat

Version

Venom RAT + HVNC + Stealer + Grabber v6.0.3

Botnet

Default

C2

127.0.0.1:4449

43.251.17.199:4449

Mutex

bqvzhxpgfcjsli

Attributes
  • delay

    1

  • install

    false

  • install_folder

    %AppData%

aes.plain

Targets

    • Target

      1e5f16d4bcd20e024c19c72dee0e2be65f331c15018e15da00f3d67394116878

    • Size

      881KB

    • MD5

      2cafa3956dca99912c10b3d2346228f5

    • SHA1

      233b9cd85537d719df2a3df3db2e4e8cb832776b

    • SHA256

      1e5f16d4bcd20e024c19c72dee0e2be65f331c15018e15da00f3d67394116878

    • SHA512

      cb6f5254825959cf6cde9d3565d7e5dec8e4ca172e3978a2b9d29f131081c3e311ac8b05c5660709c3dbd457ad8900c272719817c98b1df153dc88808bc6c648

    • SSDEEP

      24576:kWdsCIOqnXKuJz7kJ4o0QZfXD893WyiWy1tO:TsCIOqnXKBXRm9

    Score
    5/10

MITRE ATT&CK Enterprise v15

Tasks