asyncrat | 1b51ab9e393420ec75ad75433d8cefa00d0a3768d97054b78028a5b6e185388d | Triage

Submit
Reports

Overview

overview

Static

static

3

ElitecutSetup.exe

windows10-ltsc 2021-x64

Sharing

General

Target

ElitecutSetup.exe
Size

700.0MB
Sample

241123-26872a1phw
MD5

684d827e57153c735d7d6ec157dd54a7
SHA1

55ebf7510b8030e6478be2898a5994f4278db971
SHA256

1b51ab9e393420ec75ad75433d8cefa00d0a3768d97054b78028a5b6e185388d
SHA512

90725dd61d8926afbe0a00a7a3046a889162c8b41ca036c139dc2f25798229fb5ed5c8274954d541495ebdd6fc2437abea4e9153ccadeb0893a1dd2e703b1ab6
SSDEEP

196608:XT9a8z0a7oXwmIaKF39LQzl99MatTxRStt5dr/:J1zHvaKFNL2l9WaInr/

Score

10^/10

asyncrat furry discovery rat

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ElitecutSetup.exe

Resource

win10ltsc2021-20241023-en

asyncrat furry discovery rat

windows10-ltsc 2021-x64

16 signatures

150 seconds

Malware Config

Extracted

Family

asyncrat

Botnet

Furry

C2

193.161.193.99:36700

Attributes

delay
1
install
true
install_file
syskprvalor.exe
install_folder
%AppData%

aes.plain

Targets

- Target
  
  ElitecutSetup.exe
- Size
  
  700.0MB
- MD5
  
  684d827e57153c735d7d6ec157dd54a7
- SHA1
  
  55ebf7510b8030e6478be2898a5994f4278db971
- SHA256
  
  1b51ab9e393420ec75ad75433d8cefa00d0a3768d97054b78028a5b6e185388d
- SHA512
  
  90725dd61d8926afbe0a00a7a3046a889162c8b41ca036c139dc2f25798229fb5ed5c8274954d541495ebdd6fc2437abea4e9153ccadeb0893a1dd2e703b1ab6
- SSDEEP
  
  196608:XT9a8z0a7oXwmIaKF39LQzl99MatTxRStt5dr/:J1zHvaKFNL2l9WaInr/
Score

10^/10

asyncrat furry discovery rat
- AsyncRat
  AsyncRAT is designed to remotely monitor and control other computers written in C#.
  rat asyncrat
- Asyncrat family
  asyncrat
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

asyncratfurrydiscoveryrat

© 2018-2025

Terms | Privacy