General

  • Target

    2680-6-0x0000000000400000-0x0000000000412000-memory.dmp

  • Size

    72KB

  • Sample

    240126-rm6bxshaal

  • MD5

    f1115791adce292ec32ef7018977e1d3

  • SHA1

    337b7aac8abde82dd3779f6ccfd62dfbf4b0d016

  • SHA256

    60044e4be8301d4bf8d02a1c06574065b574947d0b01763df625985616cdecd2

  • SHA512

    8e21e7b797874df480bc244513bf80b425b903305557b422e68b81bef113ee2be7b84544e017f4f958af4aa3a6fa8a021e30e52871877125d9bdb7a27316887b

  • SSDEEP

    768:xuyxNTAoZjRWUJd9bmo2qLiDd+C8xjQkPIXzSb/gX3ithiHlVUOpCABDZ:xuyxNTAGL2hB+FsJXubIXSthi/bd

Score
10/10

Malware Config

Extracted

Family

asyncrat

Version

0.5.8

Botnet

Default

C2

127.0.0.1:4217

146.70.161.85:4217

Mutex

dkhXL7HeeLRM

Attributes
  • delay

    3

  • install

    true

  • install_file

    Colours.exe

  • install_folder

    %AppData%

aes.plain

Targets

    • Target

      2680-6-0x0000000000400000-0x0000000000412000-memory.dmp

    • Size

      72KB

    • MD5

      f1115791adce292ec32ef7018977e1d3

    • SHA1

      337b7aac8abde82dd3779f6ccfd62dfbf4b0d016

    • SHA256

      60044e4be8301d4bf8d02a1c06574065b574947d0b01763df625985616cdecd2

    • SHA512

      8e21e7b797874df480bc244513bf80b425b903305557b422e68b81bef113ee2be7b84544e017f4f958af4aa3a6fa8a021e30e52871877125d9bdb7a27316887b

    • SSDEEP

      768:xuyxNTAoZjRWUJd9bmo2qLiDd+C8xjQkPIXzSb/gX3ithiHlVUOpCABDZ:xuyxNTAGL2hB+FsJXubIXSthi/bd

    Score
    1/10

MITRE ATT&CK Matrix

Tasks