Overview

overview

10

Static

static

10

global rat...t).exe

windows7-x64

10

global rat...t).exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    global rat (client).exe

  • Size

    94KB

  • MD5

    50b0eb7ebcdadac737f3b4c3a3272b26

  • SHA1

    a5431a2c6639e26950210e529401d76b259fabd3

  • SHA256

    3204cf1f3baed314a8c5b4ea33fb59c3a7701077f6f798d6c45659182f3b3692

  • SHA512

    d0a578f124aa5381e1804134933350267892469a2b6ddcfa3fa25f8d2a8509da3c88908f0548131cecbe4bc05b0bcb90c48f48990e877bfe3b25057fa56b886d

  • SSDEEP

    1536:XUEkcx4VHsC0SPMVrModOO+VvQDPjjIaH1b6/S4jQzchKqkSZZZ3gNxibHnVclN:XUxcx4GfSPMVrfdkSH1b664jQsUURbHe

Score
10/10
ratdefaultasyncrat

Malware Config

Extracted

Family

asyncrat

Version

Venom RAT + HVNC + Stealer + Grabber v6.0.3

Botnet

Default

C2

89.182.200.156:4449

Mutex

fxcpkepgayovnbqlodh

Attributes
  • delay

    1

  • install

    false

  • install_folder

    %AppData%

aes.plain

Signatures

  • Async RAT payload 1 IoCs
    rat
  • Asyncrat family
    asyncrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • global rat (client).exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections