General
-
Target
Client.exe
-
Size
73KB
-
MD5
cb4a46c7872e2dcf94ab32c8cecaa56d
-
SHA1
8d72f37ea6375505c49cda356f4d74f0fcb411d0
-
SHA256
d815cf788ce433de6aed483aa10a7effb47ffbfadb75c671f8d05ff393e3bf6f
-
SHA512
468a95774064fe21455fdf4cd309654c1f6d322275b36acc12db29092e4e5af487b6bdf4b1de4aaf89cc54d90e3fd29b4347167f4da832cfc972ead89e0a878f
-
SSDEEP
1536:AULQcxcHNCHGPMV+e9VdQkhDIyH1bf/lfRQzcX3VclN:AUscxctcGPMV+e9VdQgH1bfNRQClY
Score
10/10
Malware Config
Extracted
Family
asyncrat
Version
Venom RAT + HVNC + Stealer + Grabber v6.0.3
Botnet
ZeroZen!!
C2
172.98.68.22:53835
Mutex
8d095cb0-e166-4fde-a0fd-d5867898c21b
Attributes
-
delay
1
-
install
true
-
install_file
Antimalware Service Executable.exe
-
install_folder
%AppData%
aes.plain
Signatures
-
Asyncrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
Client.exe
Headers
Sections