asyncrat | 21461a755ed10d7a6aeab5d5b540c588573efa81025cdba66dde521d9ac5bb10 | Triage

Sharing

General

Target

AimmyLauncher.exe
Size

230KB
Sample

240420-rk1nnaba4v
MD5

2b501e81f51f5a18668061b7726710fd
SHA1

5c8fc5ba854ac7c3371f499b70dff8835099ac7c
SHA256

21461a755ed10d7a6aeab5d5b540c588573efa81025cdba66dde521d9ac5bb10
SHA512

5df06b985a91a06c48bd6fcee6abf70512df1e07aa121ebfc87fb3f7d47deae2943bc4bac144e9c54f974cf595cd1ec3d4fc42a7400ef21f0a21a9f2da1423a5
SSDEEP

6144:DiDcXhu+MC+39WNNe2vZlz4GBA0JtXBLLd8WTI8:Dikhu+Mz39WLe2z8GBA0jxd86

Score

10^/10

asyncrat default rat

Malware Config

Extracted

Family

asyncrat

Botnet

Default

C2

127.0.0.1:9511

66.66.146.74:9511

Attributes

delay
1
install
true
install_file
Win32.exe
install_folder
%Temp%

aes.plain

Targets

- Target
  
  AimmyLauncher.exe
- Size
  
  230KB
- MD5
  
  2b501e81f51f5a18668061b7726710fd
- SHA1
  
  5c8fc5ba854ac7c3371f499b70dff8835099ac7c
- SHA256
  
  21461a755ed10d7a6aeab5d5b540c588573efa81025cdba66dde521d9ac5bb10
- SHA512
  
  5df06b985a91a06c48bd6fcee6abf70512df1e07aa121ebfc87fb3f7d47deae2943bc4bac144e9c54f974cf595cd1ec3d4fc42a7400ef21f0a21a9f2da1423a5
- SSDEEP
  
  6144:DiDcXhu+MC+39WNNe2vZlz4GBA0JtXBLLd8WTI8:Dikhu+Mz39WLe2z8GBA0jxd86
Score

10^/10

asyncrat default rat
- AsyncRat
  AsyncRAT is designed to remotely monitor and control other computers written in C#.
  rat asyncrat
- Async RAT payload
  rat
- Executes dropped EXE
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

asyncratdefaultrat