Overview

overview

10

Static

static

10

S.ps1

windows7-x64

3

S.ps1

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    S.zip

  • Size

    148KB

  • MD5

    b992bc362df3f6ec7c75bc48bcb15d56

  • SHA1

    487448e03b9d499c57df745c63abd5312784d020

  • SHA256

    752bb5f3c8ed70fd9fb166c23dd978e55e3a9e6ffee07eaf0ed6228fe3465e6a

  • SHA512

    d95e48f52757a7ae1cc6c030cde6e184772027b5160c0937079a1024ec75209df11cffc0b3225e81405dd933e2651a042baf7e10cd1e65a4eb8085e30947079a

  • SSDEEP

    3072:XyAuak16EZpC7AefyK/qBph5M5gW7zRZNhP93SnkoFyzyu71Kdr593iNFHK9lELG:X5ufsEZpLefLSzugW7Bt9CnkoDuxKYHU

Score
10/10
movefromloaderasyncrat

Malware Config

Extracted

Family

asyncrat

Version

| Edit 3LOSH RAT

Botnet

MoveFromLoader

C2

transfermone.dynuddns.com:9992

familyfriend.dynu.net:9992
Mutex

fgjfdghj45y6t435defsg3223523I#$%I@(@#$U@RJWEOJKROW

Attributes
  • delay

    3

  • install

    false

  • install_folder

    %AppData%

aes.plain

Signatures

Files

  • S.zip
    .zip
  • S.ps1
    .ps1