Overview

overview

10

Static

static

3

Family.exe

windows7-x64

5

Family.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Family.exe

  • Size

    123KB

  • Sample

    240930-2sbdvayenm

  • MD5

    3d84114b1b545e01154f0fd09514a505

  • SHA1

    6a76912c8df51b4ac632ec355ccdfc04069448d8

  • SHA256

    723984ea90da0fde7d45c656f26e1196d6f933c2e47a287ab06f1d4051706e55

  • SHA512

    ca55f8dfb0d861d0add789c62086b6502891da4c09476df2bdd35427addcd7482a30b7a01e89e35c0aa353fcff3f94290a37987d61b589f689ad656aa7ff22dd

  • SSDEEP

    3072:btQ5N91hoocvLSZY4nBJTwjs4MU7P9KK0XAh1NAIsf:JQ5N912v+Y4B9wjs4P5L0XAH6

Score
10/10
asyncratnymeriarat

Malware Config

Extracted

Family

asyncrat

Version

Venom RAT + HVNC + Stealer + Grabber v6.0.3

Botnet

Nymeria

C2

94.232.249.235:4449

94.232.249.235:13001
Mutex

lndumyrztqffbe

Attributes
  • delay

    1

  • install

    false

  • install_folder

    %Temp%

aes.plain

Targets

    • Target

      Family.exe

    • Size

      123KB

    • MD5

      3d84114b1b545e01154f0fd09514a505

    • SHA1

      6a76912c8df51b4ac632ec355ccdfc04069448d8

    • SHA256

      723984ea90da0fde7d45c656f26e1196d6f933c2e47a287ab06f1d4051706e55

    • SHA512

      ca55f8dfb0d861d0add789c62086b6502891da4c09476df2bdd35427addcd7482a30b7a01e89e35c0aa353fcff3f94290a37987d61b589f689ad656aa7ff22dd

    • SSDEEP

      3072:btQ5N91hoocvLSZY4nBJTwjs4MU7P9KK0XAh1NAIsf:JQ5N912v+Y4B9wjs4P5L0XAH6

    Score
    10/10
    asyncratnymeriarat

    • AsyncRat

      AsyncRAT is designed to remotely monitor and control other computers written in C#.

      ratasyncrat

    • VenomRAT

      Detects VenomRAT.

      rat

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks