General

  • Target

    Wave.exe

  • Size

    45KB

  • Sample

    241022-fxkmeszakc

  • MD5

    42c8370f61335dea76d7aa943b900f3d

  • SHA1

    5c71e4601b4e909508c9afa8fa1e205477435435

  • SHA256

    0b9c54257b625b5ad22e4c2d80fffdc4199b107356b059443231468f51fa40f9

  • SHA512

    1efafb3700c24420f70cce96b0dc3af6f51fc4e15a1f743b610d6e290138fefd70b382492013dea443a39038fd0f15072ba8795307fc07f3d393fb413d49b17a

  • SSDEEP

    768:KufxhTXbDdbWUn7yqmo2qRF0ewnKcqeSiZPIrzjbERgX3i7O9+/LEBDZ+x:KufxhTXnN2UwKniWr3bzXSi9+zyd+x

Malware Config

Extracted

Family

asyncrat

Version

0.5.8

Botnet

Default

C2

127.0.0.1:6606

127.0.0.1:7707

127.0.0.1:8808

Mutex

HAllmAfJUs3g

Attributes
  • delay

    3

  • install

    false

  • install_folder

    %AppData%

aes.plain

Targets

    • Target

      Wave.exe

    • Size

      45KB

    • MD5

      42c8370f61335dea76d7aa943b900f3d

    • SHA1

      5c71e4601b4e909508c9afa8fa1e205477435435

    • SHA256

      0b9c54257b625b5ad22e4c2d80fffdc4199b107356b059443231468f51fa40f9

    • SHA512

      1efafb3700c24420f70cce96b0dc3af6f51fc4e15a1f743b610d6e290138fefd70b382492013dea443a39038fd0f15072ba8795307fc07f3d393fb413d49b17a

    • SSDEEP

      768:KufxhTXbDdbWUn7yqmo2qRF0ewnKcqeSiZPIrzjbERgX3i7O9+/LEBDZ+x:KufxhTXnN2UwKniWr3bzXSi9+zyd+x

    • AsyncRat

      AsyncRAT is designed to remotely monitor and control other computers written in C#.

MITRE ATT&CK Enterprise v15

Tasks