General

  • Target

    Client.exe

  • Size

    63KB

  • Sample

    240626-ysq8hs1cjc

  • MD5

    66c1c8ec0de3e164c30b6303e0b171ee

  • SHA1

    c872cba0be6b35bcec629faf6e9c3fe727077c6d

  • SHA256

    9613353cbd13c22c12d0fd19508187a93b79f9d54376317b051ef7887202eebe

  • SHA512

    c92dd41358370d99fff2945a8c95506fd814cde0c43e16229eda6ca9f9c11d020779a32b04409b2e2ba0bbd7442832e77a936ca9cc53b3c5d8388d50e7c2f76d

  • SSDEEP

    1536:wh0JL7VQky47k8FJeeiIVrGbbXwxnHGeDpqKmY7:wh0JL7VQky4nFceXGbbXongz

Malware Config

Extracted

Family

asyncrat

Version

5.0.5

Botnet

Venom Clients

C2

127.0.0.1:4449

Mutex

Venom_RAT_HVNC_Mutex_Venom RAT_HVNC

Attributes
  • delay

    1

  • install

    true

  • install_file

    nigger.exe

  • install_folder

    %Temp%

aes.plain

Targets

    • Target

      Client.exe

    • Size

      63KB

    • MD5

      66c1c8ec0de3e164c30b6303e0b171ee

    • SHA1

      c872cba0be6b35bcec629faf6e9c3fe727077c6d

    • SHA256

      9613353cbd13c22c12d0fd19508187a93b79f9d54376317b051ef7887202eebe

    • SHA512

      c92dd41358370d99fff2945a8c95506fd814cde0c43e16229eda6ca9f9c11d020779a32b04409b2e2ba0bbd7442832e77a936ca9cc53b3c5d8388d50e7c2f76d

    • SSDEEP

      1536:wh0JL7VQky47k8FJeeiIVrGbbXwxnHGeDpqKmY7:wh0JL7VQky4nFceXGbbXongz

    • AsyncRat

      AsyncRAT is designed to remotely monitor and control other computers written in C#.

MITRE ATT&CK Enterprise v15

Tasks