General

  • Target

    C11Bootstrapper.zip

  • Size

    214KB

  • Sample

    240419-zqe8xafc94

  • MD5

    f10cd6c2c913e26f56156a3c752e45ed

  • SHA1

    08a63385a432c89419e21bb7c9be972032296788

  • SHA256

    fc1ad8d1483f0b1c94b55be7b7587b86485022ca4e62e6fb0c06e392dfaeecd2

  • SHA512

    8cc81d3cd29d2749234b0ec760bd929bd7ea5f6444e5fb51c9617c493cd166498296b258de7a7e647d5b87c0e1e825be7bebc502fd8bc5c295d282918830013b

  • SSDEEP

    6144:DA3cXkEnu8vjKbnU9tWCnHGXf3fgDmCyexHkv:DAMXkr8IUjmXfPgDmKxEv

Malware Config

Extracted

Family

asyncrat

Version

Venom RAT + HVNC + Stealer + Grabber v6.0.3

Botnet

Default

C2

127.0.0.1:4449

Mutex

chhphkahmfnasuyziqc

Attributes
  • delay

    1

  • install

    false

  • install_folder

    %Temp%

aes.plain
aes.plain

Extracted

Family

umbral

C2

https://discord.com/api/webhooks/1210158511317590106/v9w3kiFGxTmHnaLb091GZCxjv8fdr5efj0qIDNAgPdpreNR5UKL8WQl7YxoqctUCkOnB

Targets

    • Target

      C11Bootstrapper/Start.bat

    • Size

      1KB

    • MD5

      4e3179e79f11708b60c3af67718cc0ae

    • SHA1

      e22536c444427ce73dcc50091c28477c44e23210

    • SHA256

      6953af9e22a172b023757199cc77c0ea2353bfe7ab1843516a161081f0c1d76d

    • SHA512

      aaf2402399fe8887fe516a3be50054129298970dc322652dc02578a523be74135e02b6856f0b7b774df3c827b131d54828143583038bc5350c40e89dcd1409e1

    Score
    1/10

MITRE ATT&CK Matrix

Tasks