Overview

overview

10

Static

static

1

2301-NOTIF...01.msg

windows7-x64

10

2301-NOTIF...01.msg

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2301-NOTIFICACIÓN DEMANDA-JUZGADO 01 PENAL DEL CIRCUITO.2301.msg

  • Size

    303KB

  • Sample

    240717-z1lhnsyhnr

  • MD5

    4db8d8e3f8c312c6d3a1feffa79d54d3

  • SHA1

    5253b1b370f00eddbc04b6ed0c4baa37ef3ec80e

  • SHA256

    d5b5065c3293b02116295a98c5a8a830e6f4b684ef0adb6260b96901c108ba82

  • SHA512

    bfbc725e98b646996e6eda81030d27a2613b94346ffa927b6dae38867248048eaf4a636d3ab01d0eee9f707ba84eaef26e55ddd07ad0314645d8e836412951ff

  • SSDEEP

    3072:IiQm9PuOLjE84gVdvnbC5GqKxfdv3yNF2muWVu+uW3uJuOuOunJuCu8Ku6uXuC+0:79PuOLjYeof2WEk

Score
10/10
asyncratdefaultrat

Malware Config

Extracted

Family

asyncrat

Version

| CRACKED BY https://t.me/xworm_v2

Botnet

Default

C2

juanjuan20231.kozow.com:2107

Mutex

AsyncMutex_6SI8OkPnk

Attributes
  • delay

    3

  • install

    false

  • install_folder

    %AppData%

aes.plain

Targets

    • Target

      2301-NOTIFICACIÓN DEMANDA-JUZGADO 01 PENAL DEL CIRCUITO.2301.msg

    • Size

      303KB

    • MD5

      4db8d8e3f8c312c6d3a1feffa79d54d3

    • SHA1

      5253b1b370f00eddbc04b6ed0c4baa37ef3ec80e

    • SHA256

      d5b5065c3293b02116295a98c5a8a830e6f4b684ef0adb6260b96901c108ba82

    • SHA512

      bfbc725e98b646996e6eda81030d27a2613b94346ffa927b6dae38867248048eaf4a636d3ab01d0eee9f707ba84eaef26e55ddd07ad0314645d8e836412951ff

    • SSDEEP

      3072:IiQm9PuOLjE84gVdvnbC5GqKxfdv3yNF2muWVu+uW3uJuOuOunJuCu8Ku6uXuC+0:79PuOLjYeof2WEk

    Score
    10/10
    asyncratdefaultrat

    • AsyncRat

      AsyncRAT is designed to remotely monitor and control other computers written in C#.

      ratasyncrat

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks