Overview

overview

10

Static

static

3

Build1.exe

windows7-x64

10

Build1.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Build1.exe

  • Size

    138KB

  • Sample

    240726-snlvcayhkd

  • MD5

    fb83432d034c44a1202532e5400d535c

  • SHA1

    6ddff5ca2cb58b2d108811cbb1a78d56c14b9fe8

  • SHA256

    66d481bf2dca013520492ea209434c3f9fbb44efb9f764752a8258ccaf0708ab

  • SHA512

    119486fa615cf484d867da39e588adf883ab38dd617d8f09a85f255f0c54455a5b9c73966187521019180445a0d0840a2a4a646e0048f257a67ab53afc267329

  • SSDEEP

    3072:I7Nx8SxLRNMX/VMCZL0f6AXVll3U/+1h8wpAy7:IjLRQGaojl6/+1hHpA

Score
10/10
asyncratrat

Malware Config

Targets

    • Target

      Build1.exe

    • Size

      138KB

    • MD5

      fb83432d034c44a1202532e5400d535c

    • SHA1

      6ddff5ca2cb58b2d108811cbb1a78d56c14b9fe8

    • SHA256

      66d481bf2dca013520492ea209434c3f9fbb44efb9f764752a8258ccaf0708ab

    • SHA512

      119486fa615cf484d867da39e588adf883ab38dd617d8f09a85f255f0c54455a5b9c73966187521019180445a0d0840a2a4a646e0048f257a67ab53afc267329

    • SSDEEP

      3072:I7Nx8SxLRNMX/VMCZL0f6AXVll3U/+1h8wpAy7:IjLRQGaojl6/+1hHpA

    Score
    10/10
    asyncratrat

    • AsyncRat

      AsyncRAT is designed to remotely monitor and control other computers written in C#.

      ratasyncrat

    • Async RAT payload

      rat

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks