asyncrat | cdbd60dbcef6cb4aab7fc1094547a3f16500c0c70032b30faacd6df5a5b0199b | Triage

Sharing

General

Target

cdbd60dbcef6cb4aab7fc1094547a3f16500c0c70032b30faacd6df5a5b0199b
Size

47KB
Sample

241116-p8jc6s1jhj
MD5

a5ecad34cb793dbb9c03a601093e1c96
SHA1

6cebe7561b40cc11e15629ef7a3df55f3f411cbb
SHA256

cdbd60dbcef6cb4aab7fc1094547a3f16500c0c70032b30faacd6df5a5b0199b
SHA512

612278e99c4bf570756f3511d60ecd8c46654aededc07419779786814cc09d1fc5bb7d51c0c3210d7ac7be84bf47b1a3e0931a2075afb64348f193c063ae62fb
SSDEEP

768:xGq+s3pUtDILNCCa+Di+0j1rgLqRp8Aofiw8Yblge5s69OhtvEgK/JLZVc6KN:8q+AGtQO+OOPAmzbiws69ynkJLZVclN

Score

10^/10

asyncrat server rat

Malware Config

Extracted

Family

asyncrat

Version

1.0.7

Botnet

Server

C2

dckazts.duckdns.org:35650

Mutex

DcRatMutex_qwqdanchun

Attributes

delay
1
install
false
install_folder
%AppData%

aes.plain

Targets

- Target
  
  cdbd60dbcef6cb4aab7fc1094547a3f16500c0c70032b30faacd6df5a5b0199b
- Size
  
  47KB
- MD5
  
  a5ecad34cb793dbb9c03a601093e1c96
- SHA1
  
  6cebe7561b40cc11e15629ef7a3df55f3f411cbb
- SHA256
  
  cdbd60dbcef6cb4aab7fc1094547a3f16500c0c70032b30faacd6df5a5b0199b
- SHA512
  
  612278e99c4bf570756f3511d60ecd8c46654aededc07419779786814cc09d1fc5bb7d51c0c3210d7ac7be84bf47b1a3e0931a2075afb64348f193c063ae62fb
- SSDEEP
  
  768:xGq+s3pUtDILNCCa+Di+0j1rgLqRp8Aofiw8Yblge5s69OhtvEgK/JLZVc6KN:8q+AGtQO+OOPAmzbiws69ynkJLZVclN
Score

10^/10

asyncrat server rat
- AsyncRat
  AsyncRAT is designed to remotely monitor and control other computers written in C#.
  rat asyncrat
- Asyncrat family
  asyncrat
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

ratserverasyncrat

behavioral1

asyncratserverrat

behavioral2

asyncratserverrat