arrowrat | 35476eff95efc92ff88a5d35b8f58a46e04d4cba91746d78e6b7a206e44dd14c | Triage

Submit
Reports

Overview

overview

Static

static

Bawless Cr...rs.zip

windows11-21h2-x64

Sharing

General

Target

Bawless Cracked@Neural_Programmers.zip
Size

13.5MB
Sample

241221-qtp3va1jbl
MD5

6555ada478f5009c224e953f030943ee
SHA1

35719dca8ce05441e489d82f8d90debf7166ba11
SHA256

35476eff95efc92ff88a5d35b8f58a46e04d4cba91746d78e6b7a206e44dd14c
SHA512

bc5057d56fac9009f856a3718a243a57381e8ce2021640f96601170122b64eb0575ef8e070a0341aa6f2d5dad7f3fa93e12593c49afc9d839a6ecefa9ae5afc1
SSDEEP

393216:+ylvkZPZo3MMqhaSGJ5UMQX7hAdHYWQvukalUcVotUu65:+K821dJiF7OdHYxmflDV465

Score

10^/10

arrowrat asyncrat %group%v62ox discovery rat

Static task

static1

rat %group%asyncrat arrowrat

4 signatures

Behavioral task

behavioral1

Sample

Bawless Cracked@Neural_Programmers.zip

Resource

win11-20241007-en

asyncrat v62ox discovery rat

windows11-21h2-x64

16 signatures

150 seconds

Malware Config

Extracted

Family

arrowrat

Botnet

%Group%

C2

%Hosts%:%Ports%

Mutex

%MTX%

Extracted

Family

asyncrat

Version

Bawless Remote

Botnet

V62OX

C2

127.0.0.1:15

Mutex

TXIZLGTBY

Attributes

delay
0
install
false
install_folder
%AppData%

aes.plain

Targets

- Target
  
  Bawless Cracked@Neural_Programmers.zip
- Size
  
  13.5MB
- MD5
  
  6555ada478f5009c224e953f030943ee
- SHA1
  
  35719dca8ce05441e489d82f8d90debf7166ba11
- SHA256
  
  35476eff95efc92ff88a5d35b8f58a46e04d4cba91746d78e6b7a206e44dd14c
- SHA512
  
  bc5057d56fac9009f856a3718a243a57381e8ce2021640f96601170122b64eb0575ef8e070a0341aa6f2d5dad7f3fa93e12593c49afc9d839a6ecefa9ae5afc1
- SSDEEP
  
  393216:+ylvkZPZo3MMqhaSGJ5UMQX7hAdHYWQvukalUcVotUu65:+K821dJiF7OdHYxmflDV465
Score

10^/10

asyncrat v62ox discovery rat
- AsyncRat
  AsyncRAT is designed to remotely monitor and control other computers written in C#.
  rat asyncrat
- Asyncrat family
  asyncrat
- Async RAT payload
  rat
- Executes dropped EXE
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

rat%group%asyncratarrowrat

behavioral1

asyncratv62oxdiscoveryrat

© 2018-2024

Terms | Privacy