General

  • Target

    Venom-RAT-5.6.zip

  • Size

    44.0MB

  • Sample

    240626-x1drqa1hqm

  • MD5

    1dd61b172578d0215b7c1147078252c6

  • SHA1

    54e6828d389bcfd8fb1cbc97bfd857a2278896a4

  • SHA256

    b7c1b2cabe770aa386765913c77ab4ec9486c30fd0f06f8c192799e295d39c0f

  • SHA512

    dd3dd9d240ee989bd35cc9aecc993e4996371ec7f287389238c90d2e0ff2aadd37ea61355d5673e3ff4d35c5dfa0e9e12b49859c8b20c10c300c852511109d5b

  • SSDEEP

    786432:EwzgFpKD+zP0XohllpPaja+x4VMJsfT7x639xGeMSi3nQ+LVJSfZlC3AChQIm+LR:rzKKDPXglPamDwQcNxGeMSN+RGchhQ2R

Score
10/10

Malware Config

Targets

    • Target

      Venom-RAT-5.6.zip

    • Size

      44.0MB

    • MD5

      1dd61b172578d0215b7c1147078252c6

    • SHA1

      54e6828d389bcfd8fb1cbc97bfd857a2278896a4

    • SHA256

      b7c1b2cabe770aa386765913c77ab4ec9486c30fd0f06f8c192799e295d39c0f

    • SHA512

      dd3dd9d240ee989bd35cc9aecc993e4996371ec7f287389238c90d2e0ff2aadd37ea61355d5673e3ff4d35c5dfa0e9e12b49859c8b20c10c300c852511109d5b

    • SSDEEP

      786432:EwzgFpKD+zP0XohllpPaja+x4VMJsfT7x639xGeMSi3nQ+LVJSfZlC3AChQIm+LR:rzKKDPXglPamDwQcNxGeMSN+RGchhQ2R

    Score
    10/10
    • AsyncRat

      AsyncRAT is designed to remotely monitor and control other computers written in C#.

    • Async RAT payload

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks