General

  • Target

    out.exe

  • Size

    36.0MB

  • Sample

    240622-v2a14swfld

  • MD5

    e2348d72c67c0519919d7fd37c1c2b02

  • SHA1

    653ddc727eeffab8b709489cd1a229ee0120f794

  • SHA256

    36640e3d2048477a8cb4aa4d4e742dd31b506b004b96891e268d7e2da57096bf

  • SHA512

    e5991f8ec8940a54d64e3424a6d0ee8549eaa44c2d389a5d57640d25b549d6e3789d808d46bad7ed1816a51fb5548be09f3487f5b4b83bc267df598e0d20e074

  • SSDEEP

    393216:f1Du8BtuBw2FEL3Z3aLUoQvo6LP/SgbSpYvKEh1EdKwlGQKPJuGsiTfREsrgCYfU:fMguj8Q4VfvCqFTrYE

Score
10/10

Malware Config

Extracted

Family

asyncrat

Version

Venom RAT + HVNC + Stealer + Grabber v6.0.3

Botnet

Default

C2

194.9.6.96:8665

194.9.6.96:4449

Mutex

zdvnszfrghwqcesfnob

Attributes
  • delay

    1

  • install

    true

  • install_file

    dllhost.exe

  • install_folder

    %AppData%

aes.plain

Targets

    • Target

      out.exe

    • Size

      36.0MB

    • MD5

      e2348d72c67c0519919d7fd37c1c2b02

    • SHA1

      653ddc727eeffab8b709489cd1a229ee0120f794

    • SHA256

      36640e3d2048477a8cb4aa4d4e742dd31b506b004b96891e268d7e2da57096bf

    • SHA512

      e5991f8ec8940a54d64e3424a6d0ee8549eaa44c2d389a5d57640d25b549d6e3789d808d46bad7ed1816a51fb5548be09f3487f5b4b83bc267df598e0d20e074

    • SSDEEP

      393216:f1Du8BtuBw2FEL3Z3aLUoQvo6LP/SgbSpYvKEh1EdKwlGQKPJuGsiTfREsrgCYfU:fMguj8Q4VfvCqFTrYE

    Score
    10/10
    • AsyncRat

      AsyncRAT is designed to remotely monitor and control other computers written in C#.

    • Async RAT payload

    • Executes dropped EXE

MITRE ATT&CK Matrix

Tasks