asyncrat | 9888ce35d905f7a831dd0ff96757c45c6bd7adea987720b05141f3522c480b18 | Triage

Submit
Reports

Overview

overview

Static

static

3

9888ce35d9...18.exe

windows7-x64

3

9888ce35d9...18.exe

windows10-2004-x64

Sharing

General

Target

9888ce35d905f7a831dd0ff96757c45c6bd7adea987720b05141f3522c480b18
Size

4.2MB
Sample

241231-nwyrna1mck
MD5

781da1c06e074c6dfbb0c6b797df9eb7
SHA1

38e79b6ea79d430c6858a976afb0bb60a5aa3320
SHA256

9888ce35d905f7a831dd0ff96757c45c6bd7adea987720b05141f3522c480b18
SHA512

69df833452ea77393c54ffa449dc625720ac0fb449a3ee1da20d867c208555edf5845076ea00dc5a6d05254cf87fdd39fed12e33d3c6f726ba2e42060a9c2b3e
SSDEEP

49152:PAD5nl+y9ozOA1IXEA3SaVXjHZ/35XqFluh5VC5LQ/EqRBL7akCZYXR:ID5lPSyVJrj5/3Fr7akC

Score

10^/10

asyncrat stormkitty discovery persistence rat stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

9888ce35d905f7a831dd0ff96757c45c6bd7adea987720b05141f3522c480b18.exe

Resource

win7-20240729-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

9888ce35d905f7a831dd0ff96757c45c6bd7adea987720b05141f3522c480b18.exe

Resource

win10v2004-20241007-en

asyncrat stormkitty discovery persistence rat stealer

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  9888ce35d905f7a831dd0ff96757c45c6bd7adea987720b05141f3522c480b18
- Size
  
  4.2MB
- MD5
  
  781da1c06e074c6dfbb0c6b797df9eb7
- SHA1
  
  38e79b6ea79d430c6858a976afb0bb60a5aa3320
- SHA256
  
  9888ce35d905f7a831dd0ff96757c45c6bd7adea987720b05141f3522c480b18
- SHA512
  
  69df833452ea77393c54ffa449dc625720ac0fb449a3ee1da20d867c208555edf5845076ea00dc5a6d05254cf87fdd39fed12e33d3c6f726ba2e42060a9c2b3e
- SSDEEP
  
  49152:PAD5nl+y9ozOA1IXEA3SaVXjHZ/35XqFluh5VC5LQ/EqRBL7akCZYXR:ID5lPSyVJrj5/3Fr7akC
Score

10^/10

discovery asyncrat stormkitty persistence rat stealer
- AsyncRat
  AsyncRAT is designed to remotely monitor and control other computers written in C#.
  rat asyncrat
- Asyncrat family
  asyncrat
- StormKitty
  StormKitty is an open source info stealer written in C#.
  stealer stormkitty
- StormKitty payload
- Stormkitty family
  stormkitty
- Async RAT payload
  rat
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

asyncratstormkittydiscoverypersistenceratstealer

© 2018-2025

Terms | Privacy