General

  • Target

    e3f2ff142530b7fbd9f6153f7bf7a75d.rar

  • Size

    1.0MB

  • Sample

    241031-snh4fsyngv

  • MD5

    e3f2ff142530b7fbd9f6153f7bf7a75d

  • SHA1

    a9ed54492ccd79ec43775e8e279a1a0052f2bc55

  • SHA256

    a7e60a60e094097dd85744a09d81fce88f4a7b01e6b775cbbe91ca95543bfefa

  • SHA512

    7815f8bf9ba3255b71b5f6471e2e50e9c80bb44df613fe14eae169d229a46590336d0d2086dbaeba775cbc8110f7c5053d9cf5c9364f0bb0844f902afdb4de50

  • SSDEEP

    24576:EcWFsYmMhSZfyG71rNOezsVcSzLuPgWbfjzRBFZnW:TWFsDXdn71rvyb1mdBTnW

Score
10/10

Malware Config

Targets

    • Target

      VER PROCESO ADELANTADO EN SU CONTRA RD20017-70-71216-2024-00926-00.exe

    • Size

      1.2MB

    • MD5

      03f0ee8b8dea367a9103c169d10c583c

    • SHA1

      2015ad059d6726a328f073bf6b77f1dd8f0df1f0

    • SHA256

      5b8aa9408ee3d18a803df688974bfc125b110db19349e1938ac8d3bb6a966fcc

    • SHA512

      87f6d5386ab9f81894556f9315a0124b9db1366a21b85c418af727235a7c0f93f91f17cc3753425979e2b24b4958b33f62620b7ab803df6b60e811f6b61f2d6e

    • SSDEEP

      24576:6mGcXFh4xuKn47ipX4fai8Wh1vW1kuT4SKd0:66XFCxf80ofas1v8T450

    Score
    10/10
    • AsyncRat

      AsyncRAT is designed to remotely monitor and control other computers written in C#.

    • Asyncrat family

    • Suspicious use of NtCreateUserProcessOtherParentProcess

    • Drops startup file

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks