General

  • Target

    payload.exe

  • Size

    168KB

  • Sample

    240711-kbydlszhka

  • MD5

    8fb90e3b7a5678fd93ffbdf893e1ce66

  • SHA1

    22583cff37b5fc959ba76e0f8722ab138c90b8e0

  • SHA256

    e1e2906839d7a82d5bad2c439f0cc14d9187c7e4138e2b709548d95c6ebc5974

  • SHA512

    d94eadc4e63e92350b493381ff34d670e9dcb4a7d1925fcadf42f2e76defcaccd3be6d5b679bf2ddf8fd723c43d72b1aac0b889f3d22f2315e60088906645b64

  • SSDEEP

    3072:NhSl3RSZ3XOeG5BGHlmW9UUuEhY5DHzcc2MRR2Wz5X/pZboJN5:NhSnSZ3+eGecIUU5hgTXRz5j4N

Score
10/10

Malware Config

Extracted

Family

asyncrat

Version

AsyncRAT

Botnet

Default

C2

pepecasas123.net:4608

pepecasas123.mywire.org:4608

Mutex

10

Attributes
  • delay

    3

  • install

    false

  • install_folder

    %AppData%

aes.plain
1
vlbjMwEtAdnX7yn5ST5nZE4PdkVrHbfe

Targets

    • Target

      payload.exe

    • Size

      168KB

    • MD5

      8fb90e3b7a5678fd93ffbdf893e1ce66

    • SHA1

      22583cff37b5fc959ba76e0f8722ab138c90b8e0

    • SHA256

      e1e2906839d7a82d5bad2c439f0cc14d9187c7e4138e2b709548d95c6ebc5974

    • SHA512

      d94eadc4e63e92350b493381ff34d670e9dcb4a7d1925fcadf42f2e76defcaccd3be6d5b679bf2ddf8fd723c43d72b1aac0b889f3d22f2315e60088906645b64

    • SSDEEP

      3072:NhSl3RSZ3XOeG5BGHlmW9UUuEhY5DHzcc2MRR2Wz5X/pZboJN5:NhSnSZ3+eGecIUU5hgTXRz5j4N

    Score
    10/10
    • AsyncRat

      AsyncRAT is designed to remotely monitor and control other computers written in C#.

    • Async RAT payload

MITRE ATT&CK Matrix

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.