Overview

overview

10

Static

static

1

08-CITACIO...DA.exe

windows7-x64

10

08-CITACIO...DA.exe

windows10-2004-x64

10

08-CITACIO...s3.dll

windows7-x64

3

08-CITACIO...s3.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    03082024_0112_08-CITACION DEMANDA-JUZGADO PENAL 09- RAMA JUDICIAL ESPECIALIZADA.zip

  • Size

    2.7MB

  • Sample

    240803-bkpy6asdpe

  • MD5

    e36bf54546481fccf6d465e84c492c30

  • SHA1

    2b186e5bd3419b83a92cebd0189039b3a2604ac3

  • SHA256

    27164ab014dd29fe1a866da3871a93b423e2a91a41bdea14f1694034474ab524

  • SHA512

    bd7de9d50f770aa66664c3abd869b69ead5ec16fad2960084daa3c978981359cf05593da43caa16b68a53db7674cac53e23ce86296728b3906c70cd1788fa8aa

  • SSDEEP

    49152:rSjJB0BZ9D74v5tzVHRrg92Di7SXCGFUaRn5d7/r9rGi/h0CtjvSP5VU5gqgEBS:2j4BWzA9Ci/0tRnBrGi5jJvSBejBS

Score
10/10
asyncratdefaultdiscoveryrat

Malware Config

Extracted

Family

asyncrat

Version

| CRACKED BY https://t.me/xworm_v2

Botnet

Default

C2

remotald.duckdns.org:8808

Mutex

AsyncMutex_6SI8OkPnk

Attributes
  • delay

    3

  • install

    false

  • install_folder

    %AppData%

aes.plain

Targets

    • Target

      08-CITACION DEMANDA-JUZGADO PENAL 09- RAMA JUDICIAL ESPECIALIZADA/04 CITACION DEMANDA.exe

    • Size

      3.8MB

    • MD5

      27b6f3b8e8bdce591e5164edba28584d

    • SHA1

      3a150c9db17a94feddec8268073336d030b97dad

    • SHA256

      46d06d06984466e0e8082f8bba8d274c37145ec71f26da0904dd93ea2e7f3087

    • SHA512

      f91aea8e4dc987703926fef287178fc680d450597ad524ea0ca44255c7e3e7127c5dce8362be2f241d7a7aace2b7760467bdfc6117ce467d2bc1459045bb842f

    • SSDEEP

      49152:QDdgK6jyazbFza8IBn2cpi7cSgWVh07Z2GBc024xF6QKRTTzLAUd+JOugbW:+OK62azbMB2kZ2rUF6QKR3Vd+JAb

    Score
    10/10
    asyncratdefaultdiscoveryrat

    • AsyncRat

      AsyncRAT is designed to remotely monitor and control other computers written in C#.

      ratasyncrat

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

    • Target

      08-CITACION DEMANDA-JUZGADO PENAL 09- RAMA JUDICIAL ESPECIALIZADA/ProductStatistics3.dll

    • Size

      1.1MB

    • MD5

      99137710087ed494360fce56cec7fa5c

    • SHA1

      45f9fed20de05ecfb6490d4056b29f0d98d312f1

    • SHA256

      0f6185055c0ab184101832dda9bdca9d99ae64ec796e784a57bdfacd6f4dc0f2

    • SHA512

      75633749cb3048fb3016a3a1929862cf77f9a07de0b8d7290aecaaa187f6339efb291c9f6a7341ea4cc7597387d3b730cd119de987f495b58b49b524e195964f

    • SSDEEP

      24576:8VD9IKosUuI8xDN7J79vro8h+hwO3IMTTEC8k:C7S80qO4MTTuk

    Score
    3/10
    discovery
    behavioral3behavioral4

MITRE ATT&CK Enterprise v15

Tasks