Extracted

• • Target

    030a4af9a4b4d893d16f71a3fa43c40d9ca96692a022a1b9913d05e5c1f38394

  • Size

    1.2MB

  • MD5

    6cdd7805c45cd8fe70d7ed669060d53c

  • SHA1

    b69a4c481256903eb5322ac18152fe4e586a1beb

  • SHA256

    030a4af9a4b4d893d16f71a3fa43c40d9ca96692a022a1b9913d05e5c1f38394

  • SHA512

    7b2cd726428f3414b81e3c13906ddf064cbe2b8baa8e8988d33911f108c8c57a85e2c59f631835d1b9dd7038044d12abb0518df2d018519373f8f96bc28a5268

  • SSDEEP

    24576:Sd+lICmcMAYl6S02mDnNYtIfJvdj6Mk1QA11j4RUIUl85:iCUwF1N9OJ7Ur

  Score

  10^/10

  asyncratpersistencerat

  • AsyncRat

    AsyncRAT is designed to remotely monitor and control other computers written in C#.

    ratasyncrat

  • Modifies WinLogon for persistence

    persistence

  • Suspicious use of SetThreadContext

  behavioral1behavioral2