asyncrat | a9afbd8a837a2b009b72e8420c94486a53d5750604d1e90d4a904ead2a0ff6aa | Triage

Sharing

General

Target

ноневклид.rar
Size

36.4MB
Sample

240419-zt7sbsfe32
MD5

21673d046a45cb909157fcb14a96edd6
SHA1

3025872a3df0e457e066d4b7b754a6fa4469b1e9
SHA256

a9afbd8a837a2b009b72e8420c94486a53d5750604d1e90d4a904ead2a0ff6aa
SHA512

8c92c554f28d1083d0912e474594a2c8e833f76575f333af0adee076895a8812cf1cfff68453d9386882b044c084671e8520055deb9948aaf9dbf8ac459ee678
SSDEEP

786432:RFLk1VdxxmNaUv/KO+PTFNO7UytxdAHvBlEwWnEmvsvXdags1MLbDFqaiO:RFLMVxmNxHKlPRNOttxgvDEHnxvswl6B

Score

10^/10

asyncrat neshta evasion rat trojan

Malware Config

Targets

- Target
  
  ноневклид/Majestic Rulete.exe
- Size
  
  397KB
- MD5
  
  2fa6d25559c626fc508a6312e2b3fe7c
- SHA1
  
  9d8c7d3e4561b36cffb8d492c9e15909ff85f727
- SHA256
  
  abf16636d58804e05336226dfd47bc7efd5dbdfff689769afc32258bae048c9c
- SHA512
  
  7a78da9e89505fb99009c728a019f825e477a66e52abc9800ecc7b5eaf46e07505cb157a19c572e35b6ea946474851ef631eb6529a165fb758e959418a9ef11e
- SSDEEP
  
  6144:YAfEnGCEr9cUoMYS2/o0ZXYiVhhFlv6KnYE4SZ49tyvnh+g:YpnNEBPU7o05YIXfv6KYBSy9tyvwg
Score

10^/10

evasion trojan
- Windows security bypass
  evasion trojan
- Windows security modification
  evasion trojan
behavioral1 behavioral2
- Target
  
  ноневклид/Majestic Ruletka.exe
- Size
  
  327KB
- MD5
  
  5daee52dbb742bed3ce6f427108be688
- SHA1
  
  db451b2920f87d3c306fc840beadcbbdf539d6d0
- SHA256
  
  fcc5628401a9cf9805e9dbcd1071607fdb4034b6c7cb450d1aac64d16932a838
- SHA512
  
  4d7e9f05e3f6f773d8dab1109ed9e95c1b2e53de9f454ed2792d95ac10995bd7c10e95520fb4637c8b82a1b2a4fb7d24e6c68b270e9e9e52a1c1cec5635d2df1
- SSDEEP
  
  3072:fXEC3h+f6E7Z0CA/odzTBkqRiJW8e5s12wyBct6cUf5Z6TdoH6PkoWXv2UEZKA4B:Kf61tiSus8PBD/5QoJXvixQgnmIQP
Score

10^/10

evasion trojan
- Windows security bypass
  evasion trojan
- Windows security modification
  evasion trojan
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Disable or Modify Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

ratneshtaasyncrat

behavioral1

behavioral2

behavioral3

behavioral4