asyncrat | df0d30b3b8e49a5c196d4926db73afc4d44e5156cbee433e234a9c86e921d68d | Triage

Sharing

General

Target

64c0ecea719488462dec0211f3bdc2d0_NeikiAnalytics
Size

242KB
Sample

240512-d7673ahh53
MD5

64c0ecea719488462dec0211f3bdc2d0
SHA1

3edaba77e6301bbc8c2249d06ed5ffac4c1933c8
SHA256

df0d30b3b8e49a5c196d4926db73afc4d44e5156cbee433e234a9c86e921d68d
SHA512

86b4d7b9a66d8ce2f279f78045434a2f163eaffbf68f0f440d7ae323746af4274e256c052b592ce7ed10dfa83378d9c505cadb2825530ee335406133d099246c
SSDEEP

3072:fCjnHcbEuNJ0VZ9puqc/rLuZprcJ4qLv5FZ7+oeTjJP2dbJud3nlfirGL5uODJm4:fyHcbEuH0Ze/rLsEzZevscUremqxB

Score

10^/10

asyncrat default rat

Malware Config

Extracted

Family

asyncrat

Version

1.0.7

Botnet

Default

C2

127.0.0.1:5552

Mutex

PlayMusicProgram

Attributes

delay
1
install
false
install_folder
%AppData%

aes.plain

Targets

- Target
  
  64c0ecea719488462dec0211f3bdc2d0_NeikiAnalytics
- Size
  
  242KB
- MD5
  
  64c0ecea719488462dec0211f3bdc2d0
- SHA1
  
  3edaba77e6301bbc8c2249d06ed5ffac4c1933c8
- SHA256
  
  df0d30b3b8e49a5c196d4926db73afc4d44e5156cbee433e234a9c86e921d68d
- SHA512
  
  86b4d7b9a66d8ce2f279f78045434a2f163eaffbf68f0f440d7ae323746af4274e256c052b592ce7ed10dfa83378d9c505cadb2825530ee335406133d099246c
- SSDEEP
  
  3072:fCjnHcbEuNJ0VZ9puqc/rLuZprcJ4qLv5FZ7+oeTjJP2dbJud3nlfirGL5uODJm4:fyHcbEuH0Ze/rLsEzZevscUremqxB
Score

10^/10

asyncrat default rat
- AsyncRat
  AsyncRAT is designed to remotely monitor and control other computers written in C#.
  rat asyncrat
- Async RAT payload
  rat
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

asyncratdefaultrat

behavioral2

asyncratdefaultrat