Overview

overview

10

Static

static

10

1980-22-0x...ry.exe

windows7-x64

1980-22-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1980-22-0x0000000000400000-0x0000000000416000-memory.dmp

  • Size

    88KB

  • Sample

    240216-p5pqsabf37

  • MD5

    5c6fccb1fa33dee5ed1fbb277369c782

  • SHA1

    620cb01e9ad123ce701b86851415559c6d0cd90e

  • SHA256

    2ad0eed9ed4034b5cb92cbade0b557d20d923d54e754c507451291e69da7bdca

  • SHA512

    428f37da7059a73b3f52d74361c2901ec196c08ba893f8c9f13cda22f6438b5d9535dd733194771e98ab23d5c11a4c29a80714ea20ac328e81a8b9933e2ef591

  • SSDEEP

    1536:H6piCzcrWkVjx5uRKScSriYKuxUYFNovOOIbvnT5g/m4lxrXlTG:H6cCzcrWkUKuxUYFCvOJbvCl

Score
10/10
asyncrat2024

Malware Config

Extracted

Family

asyncrat

Version

| Edit 3LOSH RAT

Botnet

2024

C2

rat.loseyourip.com:6606

rat.loseyourip.com:7707

rat.loseyourip.com:8808
Mutex

Async_2024

Attributes
  • delay

    3

  • install

    true

  • install_file

    csrss.exe

  • install_folder

    %Temp%

aes.plain

Targets

    • Target

      1980-22-0x0000000000400000-0x0000000000416000-memory.dmp

    • Size

      88KB

    • MD5

      5c6fccb1fa33dee5ed1fbb277369c782

    • SHA1

      620cb01e9ad123ce701b86851415559c6d0cd90e

    • SHA256

      2ad0eed9ed4034b5cb92cbade0b557d20d923d54e754c507451291e69da7bdca

    • SHA512

      428f37da7059a73b3f52d74361c2901ec196c08ba893f8c9f13cda22f6438b5d9535dd733194771e98ab23d5c11a4c29a80714ea20ac328e81a8b9933e2ef591

    • SSDEEP

      1536:H6piCzcrWkVjx5uRKScSriYKuxUYFNovOOIbvnT5g/m4lxrXlTG:H6cCzcrWkUKuxUYFCvOJbvCl

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks