Overview

overview

10

Static

static

10

Client.exe

windows7-x64

10

Client.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Client.exe

  • Size

    74KB

  • Sample

    250110-ssqzvs1jdp

  • MD5

    5b1f7f243956595af2cef317a273275e

  • SHA1

    f6bcfbc268be9c272559f7345d1684b27d983fe1

  • SHA256

    c29bc00a3915c04961b3a25c499c3c9f43c33c6b484c00df4a5c8b3695344bea

  • SHA512

    1979d0564afeeaec460c86179707ff29da602ab1c66958453c52816f99e863665cdb0f08bb5b540615c8f54b752dc8ba8bb655a15b52eb5a0c5d4d9d33dccfbf

  • SSDEEP

    1536:EUzkcx4VHsC0SPMV7e9VdQuDI6H1bf/0dmIQzc2LVclN:EUwcx4GfSPMV7e9VdQsH1bfEmIQPBY

Score
10/10
asyncratvenomratdefaultrat

Malware Config

Extracted

Family

asyncrat

Version

Venom RAT + HVNC + Stealer + Grabber v6.0.3

Botnet

Default

C2

127.0.0.1:4449

127.0.0.1:8000

127.0.0.1:64240

193.161.193.99:4449

193.161.193.99:8000

193.161.193.99:64240
Mutex

oklwlbhdlrw

Attributes
  • delay

    1

  • install

    false

  • install_folder

    %AppData%

aes.plain

Targets

    • Target

      Client.exe

    • Size

      74KB

    • MD5

      5b1f7f243956595af2cef317a273275e

    • SHA1

      f6bcfbc268be9c272559f7345d1684b27d983fe1

    • SHA256

      c29bc00a3915c04961b3a25c499c3c9f43c33c6b484c00df4a5c8b3695344bea

    • SHA512

      1979d0564afeeaec460c86179707ff29da602ab1c66958453c52816f99e863665cdb0f08bb5b540615c8f54b752dc8ba8bb655a15b52eb5a0c5d4d9d33dccfbf

    • SSDEEP

      1536:EUzkcx4VHsC0SPMV7e9VdQuDI6H1bf/0dmIQzc2LVclN:EUwcx4GfSPMV7e9VdQsH1bfEmIQPBY

    Score
    10/10
    asyncratvenomratdefaultrat

    • AsyncRat

      AsyncRAT is designed to remotely monitor and control other computers written in C#.

      ratasyncrat

    • Asyncrat family

      asyncrat

    • VenomRAT

      Detects VenomRAT.

      rat

    • Venomrat family

      venomrat
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks