asyncrat | eb3be957f0a8e1f2fd544608a90b4c4a5b22f34c6e5ae5bc0342d35de0701a14 | Triage

Sharing

General

Target

Loader.exe
Size

47KB
Sample

241216-fypmrswlav
MD5

222749341749d92397472025c0350961
SHA1

183a40710a7e96e8b69477db45ecabcfe9df7a2d
SHA256

eb3be957f0a8e1f2fd544608a90b4c4a5b22f34c6e5ae5bc0342d35de0701a14
SHA512

cb16d19e0fc4edc157506ebc97d265a526ecec52a482050679c80d5fbb36a41ce0eb332c444a3fea0242093d93ad51e7be9004d64569e6e06b54fbc2d317b5ae
SSDEEP

768:CUIOFSkk0SmipFUpEadqxM3qi/Bwcv/TfT/PP1IBLbEdia9DbOiU0a/fcgCbMf+:CUh49cvbT/P4bEca9TUL0gCbMf+

Score

10^/10

asyncrat default discovery rat

Malware Config

Extracted

Family

asyncrat

Version

0.5.8

Botnet

Default

C2

stuff-data.gl.at.ply.gg:54296

Mutex

u81wDUVoFHib

Attributes

delay
3
install
false
install_folder
%AppData%

aes.plain

Targets

- Target
  
  Loader.exe
- Size
  
  47KB
- MD5
  
  222749341749d92397472025c0350961
- SHA1
  
  183a40710a7e96e8b69477db45ecabcfe9df7a2d
- SHA256
  
  eb3be957f0a8e1f2fd544608a90b4c4a5b22f34c6e5ae5bc0342d35de0701a14
- SHA512
  
  cb16d19e0fc4edc157506ebc97d265a526ecec52a482050679c80d5fbb36a41ce0eb332c444a3fea0242093d93ad51e7be9004d64569e6e06b54fbc2d317b5ae
- SSDEEP
  
  768:CUIOFSkk0SmipFUpEadqxM3qi/Bwcv/TfT/PP1IBLbEdia9DbOiU0a/fcgCbMf+:CUh49cvbT/P4bEca9TUL0gCbMf+
Score

10^/10

asyncrat default discovery rat
- AsyncRat
  AsyncRAT is designed to remotely monitor and control other computers written in C#.
  rat asyncrat
- Asyncrat family
  asyncrat
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

ratdefaultasyncrat

behavioral1

asyncratdefaultdiscoveryrat

behavioral2

asyncratdefaultdiscoveryrat