Overview

overview

10

Static

static

3

Vape_Launcher.exe

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Vape_Launcher.exe

  • Size

    94.6MB

  • Sample

    240122-1rpz6sdeap

  • MD5

    b99c3ffb881206c15be0cf1e88267ada

  • SHA1

    c58375b1fb2271207881286f9683c40ef6d732b2

  • SHA256

    2809abeff525d504140c1fa73be37d4b5292be1e1a42528e1559075136a3adfb

  • SHA512

    dff35370682e013cd37cd4974ab53c296fb9bdc1e8b11894902c76d6b44972d0ce39ffaf5631ea1d76f3eeca9af458faf1a589a1880d145149c433b5ff110cb0

  • SSDEEP

    1572864:KrrBrau8j2BYvBNY38m8M64Bo0okX5ZXRTRBvj0LMSLna7Yx6no8ZIxRy9/2Qh3u:saLGBTnr7IQ2

Score
10/10
asyncratdefaultrat

Malware Config

Extracted

Family

asyncrat

Botnet

Default

C2

127.0.0.1:8080

127.0.0.1:6915

18.ip.gl.ply.gg:8080

18.ip.gl.ply.gg:6915
Mutex

ااΗFKΙD尺w比Tبب9AI斯8C

Attributes
  • delay

    1

  • install

    false

  • install_folder

    %AppData%

aes.plain

Targets

    • Target

      Vape_Launcher.exe

    • Size

      94.6MB

    • MD5

      b99c3ffb881206c15be0cf1e88267ada

    • SHA1

      c58375b1fb2271207881286f9683c40ef6d732b2

    • SHA256

      2809abeff525d504140c1fa73be37d4b5292be1e1a42528e1559075136a3adfb

    • SHA512

      dff35370682e013cd37cd4974ab53c296fb9bdc1e8b11894902c76d6b44972d0ce39ffaf5631ea1d76f3eeca9af458faf1a589a1880d145149c433b5ff110cb0

    • SSDEEP

      1572864:KrrBrau8j2BYvBNY38m8M64Bo0okX5ZXRTRBvj0LMSLna7Yx6no8ZIxRy9/2Qh3u:saLGBTnr7IQ2

    Score
    10/10
    asyncratdefaultrat

    • AsyncRat

      AsyncRAT is designed to remotely monitor and control other computers written in C#.

      ratasyncrat

    • Async RAT payload

      rat

    • Nirsoft

    • Executes dropped EXE

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks