asyncrat | 70c7ef5fc6bc175a30fc1436ee76e05118d1a0c8310a454c373bc5e851689e08 | Triage

Sharing

General

Target

test.exe
Size

45KB
Sample

240804-j9yxcsvfkh
MD5

7f29206fc82a922c7f468f1a8c626040
SHA1

583ba79e6acd22bfafcef10a13b30a0043f73537
SHA256

70c7ef5fc6bc175a30fc1436ee76e05118d1a0c8310a454c373bc5e851689e08
SHA512

1896d659e381dbbbd208945bde36991efaef57eb515121adfb5e8a4d2a241e4098ef31815c523782c880d8a98b5f2c5e39a9e1984a5c86b523b3f66e9c158be9
SSDEEP

768:Cu/dRTUo0HQbWUnmjSmo2qMh8V1NpxTcPI1zjbkgX3iQ90K6oayV9BDZ2x:Cu/dRTUPE2l8VXPTh13brXSQ90mVTd2x

Score

10^/10

asyncrat default discovery rat

Malware Config

Extracted

Family

asyncrat

Version

0.5.8

Botnet

Default

C2

127.0.0.1:6606

127.0.0.1:7707

127.0.0.1:8808

Mutex

RFI09QOr7ybB

Attributes

delay
3
install
false
install_folder
%AppData%

aes.plain

Targets

- Target
  
  test.exe
- Size
  
  45KB
- MD5
  
  7f29206fc82a922c7f468f1a8c626040
- SHA1
  
  583ba79e6acd22bfafcef10a13b30a0043f73537
- SHA256
  
  70c7ef5fc6bc175a30fc1436ee76e05118d1a0c8310a454c373bc5e851689e08
- SHA512
  
  1896d659e381dbbbd208945bde36991efaef57eb515121adfb5e8a4d2a241e4098ef31815c523782c880d8a98b5f2c5e39a9e1984a5c86b523b3f66e9c158be9
- SSDEEP
  
  768:Cu/dRTUo0HQbWUnmjSmo2qMh8V1NpxTcPI1zjbkgX3iQ90K6oayV9BDZ2x:Cu/dRTUPE2l8VXPTh13brXSQ90mVTd2x
Score

10^/10

asyncrat default discovery rat
- AsyncRat
  AsyncRAT is designed to remotely monitor and control other computers written in C#.
  rat asyncrat
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

ratdefaultasyncrat

behavioral1

asyncratdefaultdiscoveryrat

behavioral2

asyncratdefaultdiscoveryrat