Overview

overview

10

Static

static

10

DriverX11.exe

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    DriverX11.exe

  • Size

    45KB

  • Sample

    240723-mazlds1erj

  • MD5

    d0c2b954f9e154b960c16b8c8d6ff8a3

  • SHA1

    fe64f5d84baa760d01fe89a6850d3d6b1858fb8d

  • SHA256

    d384798424a3f0383bba222d070951f9ff5185358e6ff0f29bb6fa364a13c928

  • SHA512

    b0f101795c6032101d99bc3d9be83c01e2778d591949a5ae8b4f8396bd426043cdccd4746e510169c1cdc09d654cf3dfa71d6acee7438a675ba9c78e4204ad42

  • SSDEEP

    768:Xues1TYQZ3VWU1Dmhbvmo2qj3KjGKG6PIyzjbFgX3i+CZSBFuDE1pdBmyviBDZPx:Xues1TYiwhN2yKYDy3bCXS+CZSBFAspk

Score
10/10
asyncratdriverx11rat

Malware Config

Extracted

Family

asyncrat

Version

0.5.7B

Botnet

DriverX11

C2

127.0.0.1:6606

127.0.0.1:7707

127.0.0.1:8808

127.0.0.1:1604

88.248.18.120:6606

88.248.18.120:7707

88.248.18.120:8808

88.248.18.120:1604
Mutex

DriverX11

Attributes
  • delay

    3

  • install

    true

  • install_file

    DriverX11.exe

  • install_folder

    %AppData%

aes.plain

Targets

    • Target

      DriverX11.exe

    • Size

      45KB

    • MD5

      d0c2b954f9e154b960c16b8c8d6ff8a3

    • SHA1

      fe64f5d84baa760d01fe89a6850d3d6b1858fb8d

    • SHA256

      d384798424a3f0383bba222d070951f9ff5185358e6ff0f29bb6fa364a13c928

    • SHA512

      b0f101795c6032101d99bc3d9be83c01e2778d591949a5ae8b4f8396bd426043cdccd4746e510169c1cdc09d654cf3dfa71d6acee7438a675ba9c78e4204ad42

    • SSDEEP

      768:Xues1TYQZ3VWU1Dmhbvmo2qj3KjGKG6PIyzjbFgX3i+CZSBFuDE1pdBmyviBDZPx:Xues1TYiwhN2yKYDy3bCXS+CZSBFAspk

    Score
    10/10
    asyncratdriverx11rat

    • AsyncRat

      AsyncRAT is designed to remotely monitor and control other computers written in C#.

      ratasyncrat

    • Async RAT payload

      rat

    • Executes dropped EXE

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks