Overview

overview

10

Static

static

10

library.exe

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    library.exe

  • Size

    87KB

  • Sample

    241012-vr856awdlp

  • MD5

    230935cbe671ed1035befdedb543b99a

  • SHA1

    b38f0055284aac9fd0d88a4c477727c40fcc6144

  • SHA256

    67b23c03f3322326f12745e9943cef5c716d68f8424f06af5ecefb32b7110fc9

  • SHA512

    94879375cbdf2b0404153ab81b8d59c454ff5b9db36c2cd4b799db9bbe7c2ae92a4ee3183bb43ee4aa2ed6054902b0ce55e832a8ae12e8865e2613ea3a63358c

  • SSDEEP

    1536:xuLt+Twip2v+cgaj+zbfsopha7dBZpXMxlIt01T4Po++lnlHxIcUN1H7Ulx:xuLsTwip2v+Xaj+zbfrixpcAtcGoZlnD

Score
10/10
asyncratdefaultdiscoveryrat

Malware Config

Extracted

Family

asyncrat

Version

0.5.8

Botnet

Default

C2

eg-womens.gl.at.ply.gg:6606

eg-womens.gl.at.ply.gg:7707

eg-womens.gl.at.ply.gg:8808

eg-womens.gl.at.ply.gg:8080
Mutex

kkYOx3YbBeNd

Attributes
  • delay

    3

  • install

    true

  • install_file

    COM Surrogate.exe

  • install_folder

    %AppData%

aes.plain

Targets

    • Target

      library.exe

    • Size

      87KB

    • MD5

      230935cbe671ed1035befdedb543b99a

    • SHA1

      b38f0055284aac9fd0d88a4c477727c40fcc6144

    • SHA256

      67b23c03f3322326f12745e9943cef5c716d68f8424f06af5ecefb32b7110fc9

    • SHA512

      94879375cbdf2b0404153ab81b8d59c454ff5b9db36c2cd4b799db9bbe7c2ae92a4ee3183bb43ee4aa2ed6054902b0ce55e832a8ae12e8865e2613ea3a63358c

    • SSDEEP

      1536:xuLt+Twip2v+cgaj+zbfsopha7dBZpXMxlIt01T4Po++lnlHxIcUN1H7Ulx:xuLsTwip2v+Xaj+zbfrixpcAtcGoZlnD

    Score
    10/10
    asyncratdefaultdiscoveryrat

    • AsyncRat

      AsyncRAT is designed to remotely monitor and control other computers written in C#.

      ratasyncrat

    • Async RAT payload

      rat

    • Executes dropped EXE

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks