Overview

overview

10

Static

static

3

DESCARGAR ...al.exe

windows7-x64

10

DESCARGAR ...al.exe

windows10-2004-x64

10

DESCARGAR ...re.dll

windows7-x64

3

DESCARGAR ...re.dll

windows10-2004-x64

3

DESCARGAR ...80.dll

windows7-x64

3

DESCARGAR ...80.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    YDRAY-DESCARGAR-NOTIFICACION-DE-SENTENCIA-JUDICIAL-AGRADECEMOS-CONFIRMAR-RECIBIDO-1.GZ

  • Size

    1.0MB

  • Sample

    241017-t39qdsvckb

  • MD5

    4be392945a6b4b228f1889ac8bff5927

  • SHA1

    2c9e287cb5619b9811b09b4830b327c48272b653

  • SHA256

    421ff80415726f048213bed08a4d02f4c2f5a11af92893fc9ddc6b98e55db095

  • SHA512

    031464c7548d9a7ee8a084cfe87871c250654e2b33921b5a03d84d3be279806167dc596d8410040655c2d1f542048eec38fab68847ce9dfbbf0573cec607330f

  • SSDEEP

    24576:LbAtae9qGfn52ZCMXxxgH73/jIyBlKllmSZH8ymEEWrC:HIX99n5cCexxgbvjIyBgfm24EBm

Score
10/10
asyncrat15 15 15 15discoveryrat

Malware Config

Extracted

Family

asyncrat

Version

| CRACKED BY https://t.me/xworm_v2

Botnet

15 15 15 15

C2

120.duckdns.org:9003

Mutex

AsyncMutex_6SI8OkPnk

Attributes
  • delay

    3

  • install

    false

  • install_folder

    %AppData%

aes.plain

Targets

    • Target

      DESCARGAR NOTIFICACIÒN DE SENTENCIA JUDICIAL AGRADECEMOS CONFIRMAR RECIBIDO 1/0016 NotificacionElectronicaJudicial.exe

    • Size

      141KB

    • MD5

      704925ecfdb24ef81190b82de0e5453c

    • SHA1

      1128b3063180419893615ca73ad4f9dd51ebeac6

    • SHA256

      8cc871ee8760a4658189528b4a5d8afe9824f6a13faaf1fe7eb56f2a3ad2d04e

    • SHA512

      ca187015812ddfcaa6515f3a5b780183b4a772801aa14b3f785d6dee9b9aa7db6402a7b346623fd24cf4a28f9856683022b10c3d812f8f2888e25bb218cbf216

    • SSDEEP

      3072:fW6vjvEUEzozIGnKyvBhSVeoVdS5jO4yEWzJ1gKs4H+u1ERB:REJWC+SVeoVdSZOqWbgKs4HPQ

    Score
    10/10
    asyncrat15 15 15 15discoveryrat

    • AsyncRat

      AsyncRAT is designed to remotely monitor and control other computers written in C#.

      ratasyncrat

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

    • Target

      DESCARGAR NOTIFICACIÒN DE SENTENCIA JUDICIAL AGRADECEMOS CONFIRMAR RECIBIDO 1/UXCore.dll

    • Size

      811KB

    • MD5

      3c51d0ce6fa1a2e2cbe5d8510211b8e0

    • SHA1

      5d025aca30cd7d6ecd0afc8b4ee719649219087c

    • SHA256

      ee13b2c13ded5ceabaf06030147917e748415e23d01904e6c63503817762d436

    • SHA512

      33e74cf8d08fa11ce791f3b92cd9d0c130cce717952618c724a30a63189529ed894dfb396425c0911994ef8e519844e39316485707503ffc3e4d34390fc48266

    • SSDEEP

      12288:LX0Y0yaWduIfHk898h2iKq6vPZTZpKNnSr71O7O7llqgGPT:70Y0yVumHRC2JnP1Bplqgi

    Score
    3/10
    discovery
    behavioral3behavioral4

    • Target

      DESCARGAR NOTIFICACIÒN DE SENTENCIA JUDICIAL AGRADECEMOS CONFIRMAR RECIBIDO 1/msvcr80.dll

    • Size

      612KB

    • MD5

      43143abb001d4211fab627c136124a44

    • SHA1

      edb99760ae04bfe68aaacf34eb0287a3c10ec885

    • SHA256

      cb8928ff2faf2921b1eddc267dce1bb64e6fee4d15b68cd32588e0f3be116b03

    • SHA512

      ced96ca5d1e2573dbf21875cf98a8fcb86b5bcdca4c041680a9cb87374378e04835f02ab569d5243608c68feb2e9b30ffe39feb598f5081261a57d1ce97556a6

    • SSDEEP

      12288:mxzh9hH5RVKTp0G+vFhr46CI600yZmGyYG:mph9hHzVKOpt6MmGyY

    Score
    3/10
    discovery
    behavioral5behavioral6

MITRE ATT&CK Enterprise v15

Tasks