Extracted

• • Target

    89c1d2a863f9df48d8088ae22405b6e21b2a1ccaf92a6ce108a215ee378f7e2a

  • Size

    82KB

  • MD5

    9e50c2f273cf6cf7b3041415003cf33a

  • SHA1

    8f0d85f92de5b51a204f055345eb21e9a922f66d

  • SHA256

    89c1d2a863f9df48d8088ae22405b6e21b2a1ccaf92a6ce108a215ee378f7e2a

  • SHA512

    c38cdcf80556f58244860b135b4b1f72a5e3aa719159da735519bb7276058a3ecdfb6722eb947e0ee350b48809b8a97ac1663841e4d09160fe61efeb200926ef

  • SSDEEP

    1536:l7lMWSxtyCiJHzb1rP8ty7kJ/3DBIYGUHerbqYwehpqKmY7:tlMWSxtNozb1o6YKYWweaz

  Score

  10^/10

  asyncratdefaultrat

  • AsyncRat

    AsyncRAT is designed to remotely monitor and control other computers written in C#.

    ratasyncrat

  • Async RAT payload

    rat

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Executes dropped EXE

  behavioral1behavioral2