Overview

overview

10

Static

static

3

Loads.exe

windows7-x64

1

Loads.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Loads.exe

  • Size

    1.7MB

  • Sample

    241107-yskezaxlhw

  • MD5

    7bd5e1e14b2496315523848e41ae4622

  • SHA1

    1ee35c08de24457fa449889bb9ecf879bca05695

  • SHA256

    5b96147c14536eac1dcda2350dd908fedcbdef86c99060fd86c41dc45981fd1a

  • SHA512

    824cd844bfa50b171445132ec096bdd36ec7f66b1d00f5532058c4cf320fb75fd3d5914c3e34be3f9887d24ebd9007e147df3a3b144112ef99dfae83825599b6

  • SSDEEP

    24576:GxMqXot7Z5jAU+msOMcHy4IzBS3rTUVjk7D:Gxxot7ZSXmsOMcHdIU7j

Score
10/10
asyncratnightingalediscoveryratstealer

Malware Config

Targets

    • Target

      Loads.exe

    • Size

      1.7MB

    • MD5

      7bd5e1e14b2496315523848e41ae4622

    • SHA1

      1ee35c08de24457fa449889bb9ecf879bca05695

    • SHA256

      5b96147c14536eac1dcda2350dd908fedcbdef86c99060fd86c41dc45981fd1a

    • SHA512

      824cd844bfa50b171445132ec096bdd36ec7f66b1d00f5532058c4cf320fb75fd3d5914c3e34be3f9887d24ebd9007e147df3a3b144112ef99dfae83825599b6

    • SSDEEP

      24576:GxMqXot7Z5jAU+msOMcHy4IzBS3rTUVjk7D:Gxxot7ZSXmsOMcHdIU7j

    Score
    10/10
    asyncratnightingalediscoveryratstealer

    • AsyncRat

      AsyncRAT is designed to remotely monitor and control other computers written in C#.

      ratasyncrat

    • Asyncrat family

      asyncrat

    • Nightingale family

      nightingale

    • Nightingale stealer

      Nightingale stealer is an information stealer written in C#.

      stealernightingale

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks