Overview

overview

10

Static

static

10

C11Setup.exe

windows7-x64

10

C11Setup.exe

windows10-2004-x64

10

Resubmissions

18-04-2024 21:11

240418-z1nb9sfa27 10

18-04-2024 21:06

240418-zxzwwseh45 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    C11Setup.exe

  • Size

    252KB

  • Sample

    240418-z1nb9sfa27

  • MD5

    adb48fc0242b35f84394ab6e76a60c14

  • SHA1

    76200b162b7cd180f25a6effc43e573f665af0ab

  • SHA256

    93c4bdda249ddc80ed634c8f4656872fe2fe4083fbd7c8341fc094474ac69af8

  • SHA512

    f894e5f1d01ad5ae3764065a2334178076021a517b1b6db2cc9a77b7230ae6e3c946e527a5d8e8f92de59a49334403461db9f8afcd706ec5dcfc5bc6f897dcf0

  • SSDEEP

    3072:TUf1cxiaUmPMVWDFgTH1bmOQiR7c2ytBcL5BdkwvTkmEdXYY:TYCUmPMVEuVbzHWwvqdI

Score
10/10
asyncratdefaultrat

Malware Config

Extracted

Family

asyncrat

Version

Venom RAT + HVNC + Stealer + Grabber v6.0.3

Botnet

Default

C2

127.0.0.1:4449

127.0.0.1:6555

127.0.0.1:0

127.0.0.1:4040
Mutex

mqdprsvdfq

Attributes
  • delay

    1

  • install

    true

  • install_file

    CABotstrapper.exe

  • install_folder

    %Temp%

aes.plain

Targets

    • Target

      C11Setup.exe

    • Size

      252KB

    • MD5

      adb48fc0242b35f84394ab6e76a60c14

    • SHA1

      76200b162b7cd180f25a6effc43e573f665af0ab

    • SHA256

      93c4bdda249ddc80ed634c8f4656872fe2fe4083fbd7c8341fc094474ac69af8

    • SHA512

      f894e5f1d01ad5ae3764065a2334178076021a517b1b6db2cc9a77b7230ae6e3c946e527a5d8e8f92de59a49334403461db9f8afcd706ec5dcfc5bc6f897dcf0

    • SSDEEP

      3072:TUf1cxiaUmPMVWDFgTH1bmOQiR7c2ytBcL5BdkwvTkmEdXYY:TYCUmPMVEuVbzHWwvqdI

    Score
    10/10
    asyncratdefaultrat

    • AsyncRat

      AsyncRAT is designed to remotely monitor and control other computers written in C#.

      ratasyncrat

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

2
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks