Extracted

• • Target

    6040d6caf2c0aaee9c3d5ee3fbae9a60N.exe

  • Size

    269KB

  • MD5

    6040d6caf2c0aaee9c3d5ee3fbae9a60

  • SHA1

    f16980309317783c10cc367fd8f9b5cde116a4d7

  • SHA256

    56f5b03c3fcdb4f48a597fa123250a9b2dde9ccfecdabfc0c05e64a0df232485

  • SHA512

    56fa9d1215a905163de6a8acf90d3dacc5bb4c4f00f546812245c3cacfcea08893aa94413d5204d29a0cb2620894fab038ae2089e1c464b14ad443bf6dda7c58

  • SSDEEP

    3072:nuIuTYUN2l22IY25ZQbeetVpprECIUy+/z20q3/dLpdB4Ulp/qNMYbVVOTKBY/BR:nuIOAlO5ZQbnEu60qBjBfFOi/B6Cs9i

  Score

  10^/10

  asyncratdefaultdiscoveryrat

  • AsyncRat

    AsyncRAT is designed to remotely monitor and control other computers written in C#.

    ratasyncrat

  • Async RAT payload

    rat

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Executes dropped EXE

  • Loads dropped DLL

  behavioral1behavioral2