asyncrat | 8f713c6f14c5e49062d3d528b06c0e5a9b155e34f4785ff3845ea8be6b37175a | Triage

Submit
Reports

Overview

overview

Static

static

3

199865ad74...18.exe

windows7-x64

199865ad74...18.exe

windows10-2004-x64

Sharing

General

Target

199865ad74c3c5dfa6dfe62f35da007f_JaffaCakes118
Size

177KB
Sample

240505-2zwy5agh2s
MD5

199865ad74c3c5dfa6dfe62f35da007f
SHA1

c2094ed5c2201fa50f7281a61f2f7c34805f7515
SHA256

8f713c6f14c5e49062d3d528b06c0e5a9b155e34f4785ff3845ea8be6b37175a
SHA512

c99ca66575a6ec4fb26c1da77a8bd42fe1afd0fafab6e40515834c2c49109297ee3ff4bf9d3fe2e617f6a0419fdce4723adaa124e01595aede8dc91d9e87264b
SSDEEP

3072:FtZHZaMiidOC3W/jSpclJ11QXEudpEQASvfTdW/XEMU9vOnTZ4lfa+L/6hNg4:d57dOCcGg81dpjv5W/XEMqvOnTZ4lfa3

Score

10^/10

asyncrat zgrat execution rat

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

199865ad74c3c5dfa6dfe62f35da007f_JaffaCakes118.exe

Resource

win7-20240221-en

asyncrat zgrat execution rat

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

199865ad74c3c5dfa6dfe62f35da007f_JaffaCakes118.exe

Resource

win10v2004-20240419-en

asyncrat zgrat execution rat

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  199865ad74c3c5dfa6dfe62f35da007f_JaffaCakes118
- Size
  
  177KB
- MD5
  
  199865ad74c3c5dfa6dfe62f35da007f
- SHA1
  
  c2094ed5c2201fa50f7281a61f2f7c34805f7515
- SHA256
  
  8f713c6f14c5e49062d3d528b06c0e5a9b155e34f4785ff3845ea8be6b37175a
- SHA512
  
  c99ca66575a6ec4fb26c1da77a8bd42fe1afd0fafab6e40515834c2c49109297ee3ff4bf9d3fe2e617f6a0419fdce4723adaa124e01595aede8dc91d9e87264b
- SSDEEP
  
  3072:FtZHZaMiidOC3W/jSpclJ11QXEudpEQASvfTdW/XEMU9vOnTZ4lfa+L/6hNg4:d57dOCcGg81dpjv5W/XEMqvOnTZ4lfa3
Score

10^/10

asyncrat zgrat execution rat
- AsyncRat
  AsyncRAT is designed to remotely monitor and control other computers written in C#.
  rat asyncrat
- Detect ZGRat V1
- ZGRat
  ZGRat is remote access trojan written in C#.
  rat zgrat
- Command and Scripting Interpreter: PowerShell
  Run Powershell to modify Windows Defender settings to add exclusions for file extensions, paths, and processes.
  execution
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

PowerShell

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

asyncratzgratexecutionrat

behavioral2

asyncratzgratexecutionrat

© 2018-2025

Terms | Privacy