Extracted

• • Target

    Cotizacion.exe

  • Size

    3.8MB

  • MD5

    4bcda20fcc420c83a19572e6b4610479

  • SHA1

    7e3427c72ca845d2b66c901485ef3ca2c7cbf9f8

  • SHA256

    56017b05352f3034ad5a1e34a51206b7240f8a982721e089a440172263963235

  • SHA512

    a08fe40a64e5cf50560bf9a2644b35d2f30de966626919d1e9d9a657000ccadd4ff4b3cab7bbc292249a389eacb85e2f5be1ae3e98350dd9e43b12ba5327b88a

  • SSDEEP

    98304:5mJVD97VAOltrWJP8SDUTYAA56RoeXN3cJvPd4Fm0fA0:5mJ7hAatrWJP8S+YAfSkN+vPjt0

  Score

  10^/10

  asyncratenviojuliopersistencerat

  • AsyncRat

    AsyncRAT is designed to remotely monitor and control other computers written in C#.

    ratasyncrat

  • Adds Run key to start application

    persistence

  • Suspicious use of SetThreadContext

  behavioral1