Extracted

• • Target

    0c2dd9c9b940868e85bc46857d049a057af32b8abdb93ebc6732774575013168.exe

  • Size

    1.8MB

  • MD5

    2e12b69ae7aa5d931a6aa3bf554071df

  • SHA1

    7fa9b1642771d38916f45da8f5f00a9eacc94a28

  • SHA256

    0c2dd9c9b940868e85bc46857d049a057af32b8abdb93ebc6732774575013168

  • SHA512

    e299d2fa9890b2a178ca2aa06e44e76a057a936c0987d0c59d08e9428959f75f20080cfdba5d3d86402182e9ec18818726f46bd91ebaa6c0dbe0672727ccc47d

  • SSDEEP

    49152:ery0WqVTJeKaCr4r6z+oCvkXMuMeYghagVrmp:ernRVBasM6z+zS19T

  Score

  10^/10

  asyncratpersistencerat

  • AsyncRat

    AsyncRAT is designed to remotely monitor and control other computers written in C#.

    ratasyncrat

  • Modifies WinLogon for persistence

    persistence

  • Suspicious use of SetThreadContext

  behavioral1behavioral2