Overview

overview

10

Static

static

10

C11Setup.exe

windows11-21h2-x64

10

Resubmissions

18-04-2024 21:11

240418-z1nb9sfa27 10

18-04-2024 21:06

240418-zxzwwseh45 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    C11Setup.exe

  • Size

    252KB

  • MD5

    adb48fc0242b35f84394ab6e76a60c14

  • SHA1

    76200b162b7cd180f25a6effc43e573f665af0ab

  • SHA256

    93c4bdda249ddc80ed634c8f4656872fe2fe4083fbd7c8341fc094474ac69af8

  • SHA512

    f894e5f1d01ad5ae3764065a2334178076021a517b1b6db2cc9a77b7230ae6e3c946e527a5d8e8f92de59a49334403461db9f8afcd706ec5dcfc5bc6f897dcf0

  • SSDEEP

    3072:TUf1cxiaUmPMVWDFgTH1bmOQiR7c2ytBcL5BdkwvTkmEdXYY:TYCUmPMVEuVbzHWwvqdI

Score
10/10
ratdefaultasyncrat

Malware Config

Extracted

Family

asyncrat

Version

Venom RAT + HVNC + Stealer + Grabber v6.0.3

Botnet

Default

C2

127.0.0.1:4449

127.0.0.1:6555

127.0.0.1:0

127.0.0.1:4040
Mutex

mqdprsvdfq

Attributes
  • delay

    1

  • install

    true

  • install_file

    CABotstrapper.exe

  • install_folder

    %Temp%

aes.plain

Signatures

  • Async RAT payload 1 IoCs
    rat
  • Asyncrat family
    asyncrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • C11Setup.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections