asyncrat | 582ddad7924e6d1fa9573ea2e5ca66b784e8ac98a73d8eb12592b55073f1360f | Triage

Sharing

General

Target

26072024_0238_Serfinanzas.tar
Size

181KB
Sample

240726-c475hsvakc
MD5

588c6db562b8f2ad8c68ea3ed2bf0520
SHA1

9f1f3cefc293d10a343cced8c17f19a7cc4cbf70
SHA256

582ddad7924e6d1fa9573ea2e5ca66b784e8ac98a73d8eb12592b55073f1360f
SHA512

ab440a4ab76635316239744102791d2d34f01de1795610de3bed58718db3188847f577daab77ff41fb01f25a828d2f2dfe4ed99c022e6d53ef270f10a77518ad
SSDEEP

3072:EFPGlyglunZwC2CONFX29tZD6fsP7QKuHUH3YnYvOjkzGEQBUm/HCxRj:mGl5lwwC2B21D6kjhBNmNbBjqxd

Score

10^/10

asyncrat default rat

Malware Config

Extracted

Family

asyncrat

Version

1.0.7

Botnet

Default

C2

dxpam.duckdns.org:5999

Mutex

DcRatMutex_qwqdanchun

Attributes

delay
1
install
false
install_folder
%AppData%

aes.plain

Targets

- Target
  
  SERFINAZAS obligación de pago pendiente 36521Z014A47854I9O80I017O59696520124E15415472152521022976111.exe
- Size
  
  333KB
- MD5
  
  2edc069ff3ad923a690b87b479a5730b
- SHA1
  
  6a2b61caaee1a01e07600733817b0fd246df0aef
- SHA256
  
  11eb08d4313711c1753029776d19d11eaabba4af381b456ccc405cd1d5784752
- SHA512
  
  09d0e3eac70c16085e95afaa12e72a34e084b33b3a3d77fecf075213aaaa8000b80bc210627b9e538b96ddc1f289bc0c3039025d7638600d41c60833ce72bea6
- SSDEEP
  
  6144:wYm5SAxmMS6Ywg6KaCMlAm3LGnLiXKZJd+p3ohpNEx:wYaSSFjg6KaFAFXyoJ
Score

10^/10

asyncrat default rat
- AsyncRat
  AsyncRAT is designed to remotely monitor and control other computers written in C#.
  rat asyncrat
- Async RAT payload
  rat
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

asyncratdefaultrat

behavioral2

asyncratdefaultrat