Overview

overview

10

Static

static

3

f90ddbf1ad...18.exe

windows7-x64

10

f90ddbf1ad...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f90ddbf1ad88d7efdc2ec8b4080299fe_JaffaCakes118

  • Size

    247KB

  • Sample

    240419-ad4cjabg51

  • MD5

    f90ddbf1ad88d7efdc2ec8b4080299fe

  • SHA1

    8728045f93ee455d439532914acec61b78f37fd9

  • SHA256

    2459b003341abf397c431214431544d7403abaa0ffb3651f6577857646c20d5c

  • SHA512

    c40a3c99a7e8efbdc81edb35e6c979d850a149102b538e86d2e4351f3cfd4f12412035a7279025728e3bb00086fb9eaa59b87f866b845b035df071215f222f6c

  • SSDEEP

    3072:FydQJkVIb71sRaEYLUfh5+u/0a2HBrvyIBfn8+ux221Hl:dJk071Sacfh5+CJK+

Score
10/10
asyncratdefaultrat

Malware Config

Extracted

Family

asyncrat

Version

0.5.7B

Botnet

Default

C2

127.0.0.1:6606

127.0.0.1:7707
Mutex

AsyncMutex_6SI8OkPnk

Attributes
  • delay

    3

  • install

    false

  • install_file

    Test.exe

  • install_folder

    %AppData%

aes.plain

Targets

    • Target

      f90ddbf1ad88d7efdc2ec8b4080299fe_JaffaCakes118

    • Size

      247KB

    • MD5

      f90ddbf1ad88d7efdc2ec8b4080299fe

    • SHA1

      8728045f93ee455d439532914acec61b78f37fd9

    • SHA256

      2459b003341abf397c431214431544d7403abaa0ffb3651f6577857646c20d5c

    • SHA512

      c40a3c99a7e8efbdc81edb35e6c979d850a149102b538e86d2e4351f3cfd4f12412035a7279025728e3bb00086fb9eaa59b87f866b845b035df071215f222f6c

    • SSDEEP

      3072:FydQJkVIb71sRaEYLUfh5+u/0a2HBrvyIBfn8+ux221Hl:dJk071Sacfh5+CJK+

    Score
    10/10
    asyncratdefaultrat

    • AsyncRat

      AsyncRAT is designed to remotely monitor and control other computers written in C#.

      ratasyncrat

    • Async RAT payload

      rat
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks