asyncrat | 9cb9f9145a6ee0e02edeb9bc4def3214418342fe7e3a130ba8511a1c8ed77fcd | Triage

Sharing

General

Target

76935bfc6a1783ae507f5af7bb7a5691.exe
Size

74KB
Sample

240426-pl6vysbf48
MD5

76935bfc6a1783ae507f5af7bb7a5691
SHA1

11de68dc07c94d552afaca0e3d9d5950ced39b3a
SHA256

9cb9f9145a6ee0e02edeb9bc4def3214418342fe7e3a130ba8511a1c8ed77fcd
SHA512

9d0fd776fa65503a543af943868d3135392f7b1ee8f4c026e344103761f205c908c74e283d42845bcb5401e90da2a747c4f2c856f1a740b3608824dcc2a29f46
SSDEEP

1536:jUEkcx4VHsC0SPMV/BBQA4OIcE1bj/CxQzcqLVclN:jUxcx4GfSPMV/7QA1E1bjqxQbBY

Score

10^/10

asyncrat default discovery rat

Malware Config

Extracted

Family

asyncrat

Version

Venom RAT + HVNC + Stealer + Grabber v6.0.3

Botnet

Default

C2

94.156.128.246:3323

Mutex

dhhtyh7D3j798D3JY73DJ

Attributes

delay
1
install
false
install_folder
%AppData%

aes.plain

Targets

- Target
  
  76935bfc6a1783ae507f5af7bb7a5691.exe
- Size
  
  74KB
- MD5
  
  76935bfc6a1783ae507f5af7bb7a5691
- SHA1
  
  11de68dc07c94d552afaca0e3d9d5950ced39b3a
- SHA256
  
  9cb9f9145a6ee0e02edeb9bc4def3214418342fe7e3a130ba8511a1c8ed77fcd
- SHA512
  
  9d0fd776fa65503a543af943868d3135392f7b1ee8f4c026e344103761f205c908c74e283d42845bcb5401e90da2a747c4f2c856f1a740b3608824dcc2a29f46
- SSDEEP
  
  1536:jUEkcx4VHsC0SPMV/BBQA4OIcE1bj/CxQzcqLVclN:jUxcx4GfSPMV/7QA1E1bjqxQbBY
Score

10^/10

asyncrat default discovery rat
- AsyncRat
  AsyncRAT is designed to remotely monitor and control other computers written in C#.
  rat asyncrat
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

ratdefaultasyncrat

behavioral1

asyncratdefaultdiscoveryrat

behavioral2

asyncratdefaultrat