Overview

overview

10

Static

static

10

83dffc5bb8...cs.exe

windows7-x64

10

83dffc5bb8...cs.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    83dffc5bb8b0a4d535aa56d1fb1ae9a0NeikiAnalytics_NeikiAnalytics

  • Size

    74KB

  • MD5

    83dffc5bb8b0a4d535aa56d1fb1ae9a0

  • SHA1

    9207b530cadac3acf2ab64e5bb3de6698e7f0619

  • SHA256

    a2c9709a57fc0c4406439051949421d2dc191a35c9062d8bf836ea00d1181558

  • SHA512

    bea3c6e763209e03acc2ce88352b86abc083c4a1fe273cb1aeaed2a58c745066189ef66dc5f0c0a0711075531663b7f1d36bd42a64f7753d35089632350f90a1

  • SSDEEP

    1536:zUk0cxVGlCBiPMV4tXKcqG93IEH1b+/ibnbBQzc2LVclN:zURcxVMWiPMVgVqG9BH1b+UnbBQPBY

Score
10/10
ratdefaultasyncrat

Malware Config

Extracted

Family

asyncrat

Version

Venom RAT + HVNC + Stealer + Grabber v6.0.3

Botnet

Default

Mutex

arniqpcnahxfzdp

Attributes
  • delay

    1

  • install

    false

  • install_folder

    %AppData%

  • pastebin_config

    https://pastebin.ai/raw/dlt6qr0gl9

aes.plain

Signatures

  • Async RAT payload 1 IoCs
    rat
  • Asyncrat family
    asyncrat
  • VenomRAT 1 IoCs

    Detects VenomRAT.

    rat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 83dffc5bb8b0a4d535aa56d1fb1ae9a0NeikiAnalytics_NeikiAnalytics
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections