Overview

overview

10

Static

static

10

7b94e8a1fa...cs.exe

windows7-x64

10

7b94e8a1fa...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7b94e8a1fa6f8a79097e5c4e54bcab90_NeikiAnalytics

  • Size

    833KB

  • MD5

    7b94e8a1fa6f8a79097e5c4e54bcab90

  • SHA1

    c9feb911f4f6cada3f1b8894d24e391e15aac712

  • SHA256

    0b6dc13f6e27382e89c0c270342cea3db331659767dcdb42ad6f9d315f362e8a

  • SHA512

    b8889d4c3f8684122336066d27692feb9fbfa86a153837a7712af5872b98eb1e9d3f1a6405bbd17c0ad6cfb6bb63a348c2c90ac40c7fa7ae80c82193eb8cb42b

  • SSDEEP

    24576:ZrN4yR6qWThG1I1JaWLZ8a4XFlLZyxKZnw+VXkyd5Z0Uk:xN4yR6qWThG1I1Jbl8a4XFlLZyxKZnw

Score
10/10
ratdefaultasyncrat

Malware Config

Extracted

Family

asyncrat

Version

Venom Pwn3rzs' Edtition v6.0.1

Botnet

Default

C2

127.0.0.1:4449

Mutex

hahaha

Attributes
  • delay

    1

  • install

    false

  • install_file

    denemerat.exe

  • install_folder

    %AppData%

aes.plain

Signatures

  • Async RAT payload 1 IoCs
    rat
  • Asyncrat family
    asyncrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 7b94e8a1fa6f8a79097e5c4e54bcab90_NeikiAnalytics
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections