asyncrat

Sharing

Copy URL

Twitter E-mail

General

Target

01 PROCESO JUDICIAL.zip
Size

3.0MB
Sample

240523-2dn2dsbd2z
MD5

28d6c7e16b94e512a578fc793628fb23
SHA1

835f8676802388e31c41951054a1d10ca2adfa9d
SHA256

0ba75e731377c4f2f1b9f9eeec3abcdca3e94c4096eab6db777bc8d46f9ebf33
SHA512

50c1e1036ee3d7879717b47a337150081e10f677fa25aa2a16a891e3ce5671e799d36db7bb596764c368500d8e448bdd31047201d81b4baf264dd663bbf3f517
SSDEEP

98304:L+RNQY/+oWp2MVtHV42lGrnrAlR9A50GtVzMlhI6:MJ+oWgYI2lGLERizMlV

Score

10^/10

Malware Config

Extracted

Family

asyncrat

Version

| CRACKED BY https://t.me/xworm_v2

Botnet

Default

miguel2024.kozow.com:2020

Mutex

AsyncMutex_6SI8OkPnk

Attributes

delay
3
install
false
install_folder
%AppData%

aes.plain

Targets

- Target
  
  01 PROCESO JUDICIAL/01 PROCESO JUDICIAL.exe
- Size
  
  2.3MB
- MD5
  
  5d52ef45b6e5bf144307a84c2af1581b
- SHA1
  
  414a899ec327d4a9daa53983544245b209f25142
- SHA256
  
  26a24d3b0206c6808615c7049859c2fe62c4dcd87e7858be40ae8112b0482616
- SHA512
  
  458f47c1e4ccf41edaacc57abb663ee77ca098fffc596fad941bbdea67653aeabc79b34d607078b9ee5adb45614e26f5c28a09e8faf9532081fdd5dec9ac3c48
- SSDEEP
  
  49152:DzO+g39FbI0eQf/Z3CarWedoYAmXviDTMtT2wkqN5K:DzO19Fnf/hdoYAm9ZkqN5K
Score

10^/10

asyncrat default rat
- AsyncRat
  AsyncRAT is designed to remotely monitor and control other computers written in C#.
  rat asyncrat
- Suspicious use of SetThreadContext
behavioral1 behavioral2
- Target
  
  01 PROCESO JUDICIAL/madbasic_.bpl
- Size
  
  210KB
- MD5
  
  e03a0056e75d3a5707ba199bc2ea701f
- SHA1
  
  bf40ab316e65eb17a58e70a3f0ca8426f44f5bef
- SHA256
  
  7826395127e791a883359ea81308174700da0af8052cc9853b19fd29c2e4badb
- SHA512
  
  b0a3cfb6b34832f048fe0fc70c6fa76ae16a2cacda930f6529a83a967d6e8de1c69b93e0de3dc2126c5385d85e814687e695a0a4131399a69633141cad98da2a
- SSDEEP
  
  6144:6N/kSQxE6qeM/k4qTl5L5e5+53WCG1CbF/FrfGx:JqeM/k4qR5L5e5+53WulZGx
Score

1^/10
behavioral3 behavioral4
- Target
  
  01 PROCESO JUDICIAL/maddisAsm_.bpl
- Size
  
  63KB
- MD5
  
  ef3b47b2ea3884914c13c778ff29eb5b
- SHA1
  
  dc2b1fa7c7547d8f1ad3f20f9060f7bc686118e0
- SHA256
  
  475f7cdffd8ed4d6f52bd98ae2bb684f1c923a1be2a692757a9af788a39b1d87
- SHA512
  
  9648d951d8d3640436c8029fd0f06786f7ff8f52191cd6959569c87868bb6c40ac8c7e495c09377a8a5c85e8d3942551c37eb84e916b5c16327d8d43a167820e
- SSDEEP
  
  1536:eNy3eqMne0sXB0IWtCLwEJhY0w1K7fixStj7wyis:CqMnfIB04LwEJhY0w1K7zzj
Score

1^/10
behavioral5 behavioral6
- Target
  
  01 PROCESO JUDICIAL/madexcept_.bpl
- Size
  
  436KB
- MD5
  
  98e59596edd9b888d906c5409e515803
- SHA1
  
  b79d73967a2df21d00740bc77ccebda061b44ab6
- SHA256
  
  a6ca13af74a64e4ab5ebb2d12b757cecf1a683cb9cd0ae7906db1b4b2c8a90c0
- SHA512
  
  ba617227849d2eb3285395e2d1babfe01902be143144be895011f0389f1860d0d7f08c6bbc4d461384eba270f866cce3351f52af1dc9ef9719c677619de79e42
- SSDEEP
  
  6144:1lAz49EKhEV30F8sl88nTjQ4Q50gEcW/jd+o72niVUNMa4Yn2g:1lG4ut30F8slzYlQcW/jd++2nJ6u2g
Score

1^/10
behavioral7 behavioral8
- Target
  
  01 PROCESO JUDICIAL/onestep.rar
- Size
  
  646KB
- MD5
  
  3b0d1f17f9e0364574d4d252ac05206c
- SHA1
  
  58c2136529363b08b7b407692de402fa4e675177
- SHA256
  
  89079b6d4816236926c38318ac53a0177b5684ffd11ae388a2963158c0722506
- SHA512
  
  f469b5204528d5841aa5ff9e4eb1688a6bad181f350f352b2b645ae17df5a9a400275ef39573a3f0d701317751338bc8a07f1d51e4f652283e002a28b7201fae
- SSDEEP
  
  12288:dFnscV5vN0JaL9gyI2QSejbYWcLxM4OBNbf/UsgSU:DlJtRWjbjpWb
Score

3^/10
behavioral10 behavioral9
- Target
  
  01 PROCESO JUDICIAL/rtl120.bpl
- Size
  
  1.1MB
- MD5
  
  4fbe03f99d402e4131fa17ee7fbc594c
- SHA1
  
  696ae10cfb94cc44bb86b341a5ba33e46e4fb9ed
- SHA256
  
  6028d64b53880676fcd62b445fd71952f9141b8ac0e60329b15cf9e04e437cea
- SHA512
  
  c7ed994374a4e2491e120d92f3347b0d80c812e27ba6c9e186142ff7648eb7f9f1e924380649d09c98760b748eeb5d232ae6e899193e776672e9b2237dd9c026
- SSDEEP
  
  24576:Xbhm5FWbA1msvIRzM7Rk5JZzSQ4+Is249Tx05boN:v2+TK5boN
Score

1^/10
behavioral11 behavioral12
- Target
  
  01 PROCESO JUDICIAL/urticaria.yml
- Size
  
  77KB
- MD5
  
  06e9db95890d8424c2584a15f155eb1d
- SHA1
  
  71f980a18d2321ac084284c87116446bc6cf7dbf
- SHA256
  
  32ebc34d97ad56a39847090cfb633b34b7eb069f810a1f0bb67459d3abcf3a14
- SHA512
  
  b77ee91f525da4262a70b51b7ea892565282f3f7464cf8065c9a96ba6056e5472f7c9309476580d8949cb0be22fc0600002a1b943356cb7bc9cea485a4a39274
- SSDEEP
  
  1536:pTjgOL4cuK7QZdQFV2pcbP+NMG8KzpSeOLgNjk/h:pTkOVZ7QZdoVIcbP2bcgk5
Score

3^/10
behavioral13 behavioral14
- Target
  
  01 PROCESO JUDICIAL/vcl120.bpl
- Size
  
  1.9MB
- MD5
  
  13a2734bb2249010514386ebc856b8da
- SHA1
  
  8f6e3b30f30a5bba9bc6baaf8f440e085a6a568a
- SHA256
  
  713c21d009000d504d9bcf3ce95d50e74d3933083783de144db0a16e2425ebcc
- SHA512
  
  2f108436fc1a03591802ff6b8c6ac1de1c0388b2a2a6f8839c10b5f0ec06b66775f261da4ace05fa367eb46b5be533949c092e113fe1270adedb9cb8c34ba2dd
- SSDEEP
  
  24576:O2gt8PRUMggrgN/5tWw+eNVEXZB5SOCwhuuYY8RPyS9YEPI5yz6I:ORSf0Ww+NpPSyzYY8c8YEPI4+I
Score

1^/10
behavioral15 behavioral16
- Target
  
  01 PROCESO JUDICIAL/vclx120.bpl
- Size
  
  222KB
- MD5
  
  3cb8f7606940c9b51c45ebaeb84af728
- SHA1
  
  7f33a8b5f8f7210bd93b330c5e27a1e70b22f57b
- SHA256
  
  2feec33d1e3f3d69c717f4528b8f7f5c030caae6fb37c2100cb0b5341367d053
- SHA512
  
  7559cdf6c8dbea052242f3b8129979f7d2d283f84040f1d68ae10438548072715a56a5af88b8562aeea7143194e7c5bddac3fdb01ded411a0b1cac9f0c6eef3f
- SSDEEP
  
  3072:K4af8kXL6nX0YXjvkWQ5vYhbNkWPFOEJ8YZbjeTl0Y25zFgYBzRKy6sB65avEtAA:baf8kLWL7Xov8bNxdOmrfgYmHA6h
Score

3^/10
behavioral17 behavioral18

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

Sharing

General

Malware Config

Extracted

Targets

Suspicious use of SetThreadContext

MITRE ATT&CK Matrix ATT&CK v13

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18