Overview

overview

10

Static

static

3

sds.exe

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    sds.exe

  • Size

    286KB

  • Sample

    240723-k78jfsyaqg

  • MD5

    bd95731e3dba8d4a8345285fa3afdde8

  • SHA1

    cf1d9a1c331081bef7b7828f44a229b02df6c11f

  • SHA256

    7d093e8382b6648ad18ae9e5a0e6b9daf7a752910a2e9793b5bdbf4b978e3582

  • SHA512

    a376df158fdae1b1630ce73fd8d6414f5db9a52114de70b98eb261c85a47a3bcf598ad34306a47cbbfa179287d2cdf3f181cf21551bb05edc79300e6031b4cd0

  • SSDEEP

    1536:ph/E2frZSld8GhOXzyWn0TWWWWWWWWWWWWWWWWWWWWWWWWWWWWWWokWWWWWWWWWV:p5E2tcqDyA0Qn7H5rB2rPBc/KD0MHIV

Score
10/10
asyncratdriverx11rat

Malware Config

Extracted

Family

asyncrat

Version

0.5.7B

Botnet

DriverX11

C2

127.0.0.1:6606

127.0.0.1:7707

127.0.0.1:8808

127.0.0.1:1604

88.248.18.120:6606

88.248.18.120:7707

88.248.18.120:8808

88.248.18.120:1604
Mutex

DriverX11

Attributes
  • delay

    3

  • install

    true

  • install_file

    DriverX11.exe

  • install_folder

    %AppData%

aes.plain

Targets

    • Target

      sds.exe

    • Size

      286KB

    • MD5

      bd95731e3dba8d4a8345285fa3afdde8

    • SHA1

      cf1d9a1c331081bef7b7828f44a229b02df6c11f

    • SHA256

      7d093e8382b6648ad18ae9e5a0e6b9daf7a752910a2e9793b5bdbf4b978e3582

    • SHA512

      a376df158fdae1b1630ce73fd8d6414f5db9a52114de70b98eb261c85a47a3bcf598ad34306a47cbbfa179287d2cdf3f181cf21551bb05edc79300e6031b4cd0

    • SSDEEP

      1536:ph/E2frZSld8GhOXzyWn0TWWWWWWWWWWWWWWWWWWWWWWWWWWWWWWokWWWWWWWWWV:p5E2tcqDyA0Qn7H5rB2rPBc/KD0MHIV

    Score
    10/10
    asyncratdriverx11rat

    • AsyncRat

      AsyncRAT is designed to remotely monitor and control other computers written in C#.

      ratasyncrat

    • Async RAT payload

      rat

    • Executes dropped EXE

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks