General

  • Target

    c50edf046cbffe5e7913d77060ab09e0f2a56ff539501019bffb3c1e9294fc1e

  • Size

    63KB

  • Sample

    241130-sl9hma1nhj

  • MD5

    461a1cf6df4dc1db4d23b0b6dc7530b5

  • SHA1

    4fca0aec7df5056e4e5605ce0772f7118316b119

  • SHA256

    c50edf046cbffe5e7913d77060ab09e0f2a56ff539501019bffb3c1e9294fc1e

  • SHA512

    94024476f649db8f2640e6a8df5787c632617eeac4e998ff7bc1ad2e89e3f179b821a4551b37d5f54fe9aef4a20c9a2eab023c49ce6a88d6ce7333415ac14507

  • SSDEEP

    1536:hmImx6tX2kNff4sKu+UYF2Ijp5bGAP6nsWnLrQTGtx:hm9x6tmkN7Ku+UYFt5bGkEG+x

Malware Config

Extracted

Family

asyncrat

Version

| CRACKED BY https://t.me/xworm_v2

Botnet

Server

C2

aswyg.duckdns.org:52350

Mutex

AsyncMutex_6SI6TOGjnk

Attributes
  • delay

    3

  • install

    false

  • install_folder

    %AppData%

aes.plain

Targets

    • Target

      c50edf046cbffe5e7913d77060ab09e0f2a56ff539501019bffb3c1e9294fc1e

    • Size

      63KB

    • MD5

      461a1cf6df4dc1db4d23b0b6dc7530b5

    • SHA1

      4fca0aec7df5056e4e5605ce0772f7118316b119

    • SHA256

      c50edf046cbffe5e7913d77060ab09e0f2a56ff539501019bffb3c1e9294fc1e

    • SHA512

      94024476f649db8f2640e6a8df5787c632617eeac4e998ff7bc1ad2e89e3f179b821a4551b37d5f54fe9aef4a20c9a2eab023c49ce6a88d6ce7333415ac14507

    • SSDEEP

      1536:hmImx6tX2kNff4sKu+UYF2Ijp5bGAP6nsWnLrQTGtx:hm9x6tmkN7Ku+UYFt5bGkEG+x

    • AsyncRat

      AsyncRAT is designed to remotely monitor and control other computers written in C#.

    • Asyncrat family

MITRE ATT&CK Enterprise v15

Tasks