Overview

overview

10

Static

static

10

1496-222-0...ry.exe

windows7-x64

1496-222-0...ry.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1496-222-0x0000000000090000-0x00000000000A6000-memory.dmp

  • Size

    88KB

  • Sample

    240806-xkyrys1blf

  • MD5

    1d6700a9703573591fae9da659d31754

  • SHA1

    9f8f276d97eda81b143c3d4b2a010b7dde387496

  • SHA256

    385fd2d33bf7836b172d8cc8309aa4490957799579a14c30bb7203967b9c160e

  • SHA512

    1ad433107f687e73eb7166e499992381ea15fc1583a1a8f665dbdb35e35320236d63047a719a0be6e165f7f463cbee6da48296ee71354c9927bc22228fedbc10

  • SSDEEP

    1536:92qH6R6tw6enoAUCYPFvZVf3RY7ExoQNgRK5TCdTyg7sDCzZbx+X3izKQTi7cpz7:92qH6R6tw6eoHCYPFvZVf3RY7ExoQNgB

Score
10/10
asyncratfwzcrypt

Malware Config

Extracted

Family

asyncrat

Version

AWS | 3Losh

Botnet

Fwzcrypt

C2

alertazazws123.ddnsgeek.com:7707

Mutex

AsyncMutex_shwdfee

Attributes
  • delay

    3

  • install

    false

  • install_folder

    %AppData%

aes.plain

Targets

    • Target

      1496-222-0x0000000000090000-0x00000000000A6000-memory.dmp

    • Size

      88KB

    • MD5

      1d6700a9703573591fae9da659d31754

    • SHA1

      9f8f276d97eda81b143c3d4b2a010b7dde387496

    • SHA256

      385fd2d33bf7836b172d8cc8309aa4490957799579a14c30bb7203967b9c160e

    • SHA512

      1ad433107f687e73eb7166e499992381ea15fc1583a1a8f665dbdb35e35320236d63047a719a0be6e165f7f463cbee6da48296ee71354c9927bc22228fedbc10

    • SSDEEP

      1536:92qH6R6tw6enoAUCYPFvZVf3RY7ExoQNgRK5TCdTyg7sDCzZbx+X3izKQTi7cpz7:92qH6R6tw6eoHCYPFvZVf3RY7ExoQNgB

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks