Overview

overview

10

Static

static

10

build1.exe

windows7-x64

10

build1.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    build1.exe

  • Size

    45KB

  • Sample

    241103-hstewayalb

  • MD5

    0e1141f61caa53ead8fa4e45993d189e

  • SHA1

    b5cc17d4368102d53c4993d239d00091936b61e7

  • SHA256

    58865fc778fc57b91442330d5f2f39469c3efba14483e2394ab7a424644e72da

  • SHA512

    aa31a9024a785d610593573469579c0e1789817a9ac4b42608a735df7811201bde0a9e239b158dc7a513d923be85a4495995214f73af1321fad61a6d6cff4f0e

  • SSDEEP

    768:9uAtPTgoRzbWUnd9rmo2qr6CXtTt/PIezjbZgX3iexN0DH1qn2rohBDZzx:9uAtPTgG/2Hwue3b2XSebGHMFfdzx

Score
10/10
asyncratdefaultdiscoveryrat

Malware Config

Extracted

Family

asyncrat

Version

0.5.8

Botnet

Default

Mutex

8Lyp08vgvo79

Attributes
  • delay

    3

  • install

    false

  • install_folder

    %AppData%

  • pastebin_config

    https://pastebin.com/raw/s14cUU5G

aes.plain

Targets

    • Target

      build1.exe

    • Size

      45KB

    • MD5

      0e1141f61caa53ead8fa4e45993d189e

    • SHA1

      b5cc17d4368102d53c4993d239d00091936b61e7

    • SHA256

      58865fc778fc57b91442330d5f2f39469c3efba14483e2394ab7a424644e72da

    • SHA512

      aa31a9024a785d610593573469579c0e1789817a9ac4b42608a735df7811201bde0a9e239b158dc7a513d923be85a4495995214f73af1321fad61a6d6cff4f0e

    • SSDEEP

      768:9uAtPTgoRzbWUnd9rmo2qr6CXtTt/PIezjbZgX3iexN0DH1qn2rohBDZzx:9uAtPTgG/2Hwue3b2XSebGHMFfdzx

    Score
    10/10
    asyncratdefaultdiscoveryrat

    • AsyncRat

      AsyncRAT is designed to remotely monitor and control other computers written in C#.

      ratasyncrat

    • Asyncrat family

      asyncrat

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks