General

  • Target

    d1dd28c73b16bcef49cd39fd6d60fb4e

  • Size

    60KB

  • Sample

    240229-199gjaeb81

  • MD5

    d1dd28c73b16bcef49cd39fd6d60fb4e

  • SHA1

    e88619b930e5409351bec90f0ee7393bf7f710b5

  • SHA256

    62c6e5b27dc38ba575a01b36814752b36a15ee6849b4b64ef7e96dcc404f116f

  • SHA512

    d035e0217d0125938f51ff1042f341f2b281ff58e6601e159f7adc5a2962b1318d13cd55cdc826b403aed64c9e464677d3ff6acc7ccb473974517d5f9bf2c33d

  • SSDEEP

    1536:v4aNl0eNaOOhfmwPS8zQ00/uriBphEVbbagnQUJ1wN:v4il0eNaOOhfmwPS8zQ00/lLhEVbbaoO

Score
10/10

Malware Config

Extracted

Family

asyncrat

C2

127.0.0.1:8848

120.46.33.65:8848

Mutex

kvsrzdfuraigre

Attributes
  • delay

    1

  • install

    false

  • install_folder

    %AppData%

aes.plain

Targets

    • Target

      d1dd28c73b16bcef49cd39fd6d60fb4e

    • Size

      60KB

    • MD5

      d1dd28c73b16bcef49cd39fd6d60fb4e

    • SHA1

      e88619b930e5409351bec90f0ee7393bf7f710b5

    • SHA256

      62c6e5b27dc38ba575a01b36814752b36a15ee6849b4b64ef7e96dcc404f116f

    • SHA512

      d035e0217d0125938f51ff1042f341f2b281ff58e6601e159f7adc5a2962b1318d13cd55cdc826b403aed64c9e464677d3ff6acc7ccb473974517d5f9bf2c33d

    • SSDEEP

      1536:v4aNl0eNaOOhfmwPS8zQ00/uriBphEVbbagnQUJ1wN:v4il0eNaOOhfmwPS8zQ00/lLhEVbbaoO

    Score
    10/10
    • AsyncRat

      AsyncRAT is designed to remotely monitor and control other computers written in C#.

    • Detects executables attemping to enumerate video devices using WMI

MITRE ATT&CK Matrix

Tasks