Overview

overview

10

Static

static

1

URLScan

urlscan

https://github.com/S...

windows10-2004-x64

10

Resubmissions

19-10-2024 14:12

241019-rh1wmszfjb 7

19-10-2024 14:03

241019-rczfma1hjn 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    https://github.com/SilentCryptoMiner/SilentCryptoMiner/releases/download/scm-v3.2.0/Silent.Crypto.Miner.Builder.rar

  • Sample

    241019-rczfma1hjn

Score
10/10
asyncratunamdefense_evasiondiscoveryexecutionpyinstallerrat

Malware Config

Extracted

Family

asyncrat

Version

AsyncRAT

Botnet

unam

C2

windowsignn.theworkpc.com:6606

Mutex

AsyncMutex_5552

Attributes
  • delay

    3

  • install

    false

  • install_folder

    %AppData%

aes.plain

Targets

    • Target

      https://github.com/SilentCryptoMiner/SilentCryptoMiner/releases/download/scm-v3.2.0/Silent.Crypto.Miner.Builder.rar

    Score
    10/10
    asyncratunamdefense_evasiondiscoveryexecutionpyinstallerrat

    • AsyncRat

      AsyncRAT is designed to remotely monitor and control other computers written in C#.

      ratasyncrat

    • Async RAT payload

      rat

    • Command and Scripting Interpreter: PowerShell

      Run Powershell and hide display window.

      execution

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Hide Artifacts: Hidden Files and Directories

      defense_evasion
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks