asyncrat | ba69923f242d9a2ecabcbd5d9a8b88ed69493521febb5b129c1e1c487c7f8cd4 | Triage

Sharing

General

Target

1.rar
Size

31KB
Sample

241101-f53szaxfpk
MD5

56f0f3acb6346a9a1231230865a2961b
SHA1

37f86d3d4a743506ba48b1ccd8d64aa761602047
SHA256

ba69923f242d9a2ecabcbd5d9a8b88ed69493521febb5b129c1e1c487c7f8cd4
SHA512

14f1aea4a105b778e33054a2d1fdc156cdabb922447030bc9bb77d609a0fe3b176b78d9637c4c8a4fbd6ba0743a34e12f1132b1c9f5a5c7fb647f1584af879fe
SSDEEP

768:ffpOTffI5Ahmk+08pMVqPy2l09+Tdx4OipRAP1LzThK2zR:ZOTHyAL+3Malq+Tdx4RpadvhKeR

Score

10^/10

asyncrat b____b discovery rat

Malware Config

Extracted

Family

asyncrat

Version

Xchallenger | 3Losh

Botnet

B____b

C2

torrentmoviess.com:5050

Mutex

AsyncMutex_al

Attributes

delay
3
install
false
install_folder
%AppData%

aes.plain

Targets

- Target
  
  AsyncClient.exe
- Size
  
  65KB
- MD5
  
  002ca45c5ed073d65ed1a7ca3027577a
- SHA1
  
  7bdfafc82e0fc09de5ef3350b89b70fd5d2303d1
- SHA256
  
  af7c76993fa629d73d270d8700e9969b9605cdd76184b1710c0aae2933507e91
- SHA512
  
  e69344fb6893c9b7b13785d6856b93d551e0db64be51246ea7125d67af54195e99576249f222a3a4437e8cfa755dba664810f466d06f45a8b961e77b948b4348
- SSDEEP
  
  1536:82YSpY5ky8D8uGOr9KTC+PFlP4g5E8nU6altyzCeFDfnvNXbTTOF6HHIVr2r53R/:82YSpY5kT2E8nU6aLqpfvNXbTTJHNdLx
Score

10^/10

asyncrat b____b discovery rat
- AsyncRat
  AsyncRAT is designed to remotely monitor and control other computers written in C#.
  rat asyncrat
- Asyncrat family
  asyncrat
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

ratb____basyncrat

behavioral1

asyncratb____bdiscoveryrat