General

  • Target

    solara.exe

  • Size

    338KB

  • Sample

    240623-tbs9bszgkp

  • MD5

    de8fd36c9149b4ab07ce77b4e87ee5bb

  • SHA1

    7b8a6a5e578ed046cb394cdab682d967e846a5e3

  • SHA256

    9203d2af5fba01fe8c2c6b32e822056c55b3e07a8ca9abf382e9e3236d385afe

  • SHA512

    5ffcf76d3832e1a1943adafd60308c5e559119f4baec873f7dc749b20bbabfb1ca67843598f9dc25d619db49976095330073d33444f08b1887a90b4bf0200986

  • SSDEEP

    6144:S5fSPMV7aesVbwDPTy3gJckDCO5+Pl+bsc:S5fNds2DPTywWQ+Plesc

Score
10/10

Malware Config

Extracted

Family

asyncrat

Version

Venom RAT + HVNC + Stealer + Grabber v6.0.3

Botnet

Default

C2

192.168.1.32:4449

Mutex

spnoixaujskarjwmald

Attributes
  • delay

    1

  • install

    false

  • install_folder

    %AppData%

aes.plain

Targets

    • Target

      solara.exe

    • Size

      338KB

    • MD5

      de8fd36c9149b4ab07ce77b4e87ee5bb

    • SHA1

      7b8a6a5e578ed046cb394cdab682d967e846a5e3

    • SHA256

      9203d2af5fba01fe8c2c6b32e822056c55b3e07a8ca9abf382e9e3236d385afe

    • SHA512

      5ffcf76d3832e1a1943adafd60308c5e559119f4baec873f7dc749b20bbabfb1ca67843598f9dc25d619db49976095330073d33444f08b1887a90b4bf0200986

    • SSDEEP

      6144:S5fSPMV7aesVbwDPTy3gJckDCO5+Pl+bsc:S5fNds2DPTywWQ+Plesc

    Score
    10/10
    • AsyncRat

      AsyncRAT is designed to remotely monitor and control other computers written in C#.

MITRE ATT&CK Matrix ATT&CK v13

Discovery

Query Registry

2
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

2
T1082

Tasks