asyncrat | 8aca56991f81e3d4ed9da29b87d8e7109a4017d9c35b44fd4d24885c3666bfef | Triage

Sharing

General

Target

8aca56991f81e3d4ed9da29b87d8e7109a4017d9c35b44fd4d24885c3666bfef
Size

1.3MB
Sample

240409-11n48shb5y
MD5

5871e8ec0525f7850cb608382a5f30b4
SHA1

acef833944d86a6f0560519831a36be76514dbca
SHA256

8aca56991f81e3d4ed9da29b87d8e7109a4017d9c35b44fd4d24885c3666bfef
SHA512

fe3e3a8b5f073935cb17762ba56bc2030f5de235ab5d5ac78f57ef71c744231045db5657d2261a03b6858fed07d08e9bfe4c84d19bae9ae55d525640b0290160
SSDEEP

12288:GsFxpE2JExvhVP3dUQJJp2tCKIPJuWRXNdMTNHWsSPtWKHEpr7MfJq+/l4U4UsUR:Gc2hJuCXPMhH/iGprAfJTJNXqfZb2

Score

10^/10

asyncrat default rat

Malware Config

Extracted

Family

asyncrat

Version

1.0.7

Botnet

Default

C2

38.181.35.175:8848

Mutex

DcRatMutex

Attributes

delay
1
install
false
install_file
qazqaz.exe
install_folder
%AppData%

aes.plain

Targets

- Target
  
  8aca56991f81e3d4ed9da29b87d8e7109a4017d9c35b44fd4d24885c3666bfef
- Size
  
  1.3MB
- MD5
  
  5871e8ec0525f7850cb608382a5f30b4
- SHA1
  
  acef833944d86a6f0560519831a36be76514dbca
- SHA256
  
  8aca56991f81e3d4ed9da29b87d8e7109a4017d9c35b44fd4d24885c3666bfef
- SHA512
  
  fe3e3a8b5f073935cb17762ba56bc2030f5de235ab5d5ac78f57ef71c744231045db5657d2261a03b6858fed07d08e9bfe4c84d19bae9ae55d525640b0290160
- SSDEEP
  
  12288:GsFxpE2JExvhVP3dUQJJp2tCKIPJuWRXNdMTNHWsSPtWKHEpr7MfJq+/l4U4UsUR:Gc2hJuCXPMhH/iGprAfJTJNXqfZb2
Score

10^/10

asyncrat default rat
- AsyncRat
  AsyncRAT is designed to remotely monitor and control other computers written in C#.
  rat asyncrat
- Async RAT payload
  rat
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

asyncratdefaultrat

behavioral2

asyncratdefaultrat