Extracted

• • Target

    97f70b6807192398746dd93449c2fdf4353533313c021aca4d0aa5e74f82d990

  • Size

    65KB

  • MD5

    3712477f2075218e74bdf987b23b578d

  • SHA1

    95d8ef64bfc80a2cda65a4992a63083988207f67

  • SHA256

    97f70b6807192398746dd93449c2fdf4353533313c021aca4d0aa5e74f82d990

  • SHA512

    1a767e93ca25f0117864a5c3e1eced57a8142d5fc3d300f64f2460aac3e13ae826fc06aba195f75184651f06a76ad8f2c7adeb35ff297dc7a2ce55b9503e2e8f

  • SSDEEP

    1536:dumO1TQq726uw/O2CenkR7bExca0tICKfX5WxHd5w:dumaTQq725w/bCenkVbExzCKfX8xHjw

  Score

  10^/10

  asyncratheirat

  • AsyncRat

    AsyncRAT is designed to remotely monitor and control other computers written in C#.

    ratasyncrat

  • Async RAT payload

    rat

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Executes dropped EXE

  • Loads dropped DLL

  behavioral1behavioral2