Extracted

• • Target

    7648ce1a32114a9bc3aec7db4d7b1638a4792b22f3ecaeee6feafbc94e500e91.exe

  • Size

    74KB

  • MD5

    c68b658d7ad2d719d3eb54079f401944

  • SHA1

    11308eb4ac8c2ae86249bc56e8a65368fe364be1

  • SHA256

    7648ce1a32114a9bc3aec7db4d7b1638a4792b22f3ecaeee6feafbc94e500e91

  • SHA512

    859679e490591b24549171780515a44bacaa7ad4beb59f6c3a7e65ba13ed57e4144542245b6073058ec35ae69a948c1e934e18fc6ae6cf550fa46a9ce09741f5

  • SSDEEP

    1536:WUrQcxHCapCtGPMVCe9VdQuDI6H1bf/EigBQzciLVclN:WUMcxHCoeGPMVCe9VdQsH1bfPIQzBY

  Score

  10^/10

  asyncratdefaultrat

  • AsyncRat

    AsyncRAT is designed to remotely monitor and control other computers written in C#.

    ratasyncrat

  • Async RAT payload

    rat

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Executes dropped EXE

  behavioral1behavioral2