asyncrat | 676b75f51cae685ae27a0c7b6d8b4c3f9136824782ae70166dbe5849ba7edf24 | Triage

Sharing

General

Target

676b75f51cae685ae27a0c7b6d8b4c3f9136824782ae70166dbe5849ba7edf24.exe
Size

63KB
Sample

241124-na6kdasrcq
MD5

cd41418fd867c4f5c462b5b52da9b007
SHA1

c782495f897c6afff3342ef449deef38d8dd396c
SHA256

676b75f51cae685ae27a0c7b6d8b4c3f9136824782ae70166dbe5849ba7edf24
SHA512

8d9bdb2c8186d401c3edaa2bff69951ca814d8772bc5981865d369226082ca5e55fc334499bb280b344b95e6904d47dc60869e85bfba56fd791e8c04d2e97737
SSDEEP

1536:emfuSa/dSkDVMKuJUYFrQ4qh5bHAPhtiCNrPlTG5xO:emGSa/dSkOKuJUYF0Ph5bHvedCxO

Score

10^/10

asyncrat nov discovery rat

Malware Config

Extracted

Family

asyncrat

Version

| nelsontriana980

Botnet

NOV

C2

aaaasssss2424.duckdns.org:8808

Mutex

111qqq111qqq

Attributes

delay
4
install
false
install_folder
%AppData%

aes.plain

Targets

- Target
  
  676b75f51cae685ae27a0c7b6d8b4c3f9136824782ae70166dbe5849ba7edf24.exe
- Size
  
  63KB
- MD5
  
  cd41418fd867c4f5c462b5b52da9b007
- SHA1
  
  c782495f897c6afff3342ef449deef38d8dd396c
- SHA256
  
  676b75f51cae685ae27a0c7b6d8b4c3f9136824782ae70166dbe5849ba7edf24
- SHA512
  
  8d9bdb2c8186d401c3edaa2bff69951ca814d8772bc5981865d369226082ca5e55fc334499bb280b344b95e6904d47dc60869e85bfba56fd791e8c04d2e97737
- SSDEEP
  
  1536:emfuSa/dSkDVMKuJUYFrQ4qh5bHAPhtiCNrPlTG5xO:emGSa/dSkOKuJUYF0Ph5bHvedCxO
Score

10^/10

asyncrat nov discovery rat
- AsyncRat
  AsyncRAT is designed to remotely monitor and control other computers written in C#.
  rat asyncrat
- Asyncrat family
  asyncrat
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

asyncratnovdiscoveryrat

behavioral2

asyncratnovdiscoveryrat