asyncrat | 1bbc8b0a6809596eb4d2540975af348fc9b07fd832e4461671d3f65d8f9f8dbc | Triage

Sharing

General

Target

Rolbox.exe
Size

497KB
Sample

250117-gsr2datrdw
MD5

c8ec8994aa275dc13d849e9f4fb99948
SHA1

14847b9b283d88c040bfd992ba968f86a4ade52d
SHA256

1bbc8b0a6809596eb4d2540975af348fc9b07fd832e4461671d3f65d8f9f8dbc
SHA512

7f981852d05135b90e9d460d67390e24f65c0123f72d364e2c73be8aebebc926ea3b10d3659ef9b6280953d1a2f0cf8b6ed8fb1ee98f1b03b283d9efea486bbe
SSDEEP

12288:a5fGb1H6R7sCRcquxJJctlPkiXpiCC0QSRvb6zboi7J4EPL40j9q4Jnr5cMDwXBM:awb1RhCNE7r

Score

10^/10

asyncrat default rat

Malware Config

Extracted

Family

asyncrat

Version

Venom RAT + HVNC + Stealer + Grabber v6.0.3

Botnet

Default

C2

147.185.221.251:18020

Mutex

gmmyiwyilnzzmujwdxl

Attributes

delay
1
install
false
install_folder
%AppData%

aes.plain

Targets

- Target
  
  Rolbox.exe
- Size
  
  497KB
- MD5
  
  c8ec8994aa275dc13d849e9f4fb99948
- SHA1
  
  14847b9b283d88c040bfd992ba968f86a4ade52d
- SHA256
  
  1bbc8b0a6809596eb4d2540975af348fc9b07fd832e4461671d3f65d8f9f8dbc
- SHA512
  
  7f981852d05135b90e9d460d67390e24f65c0123f72d364e2c73be8aebebc926ea3b10d3659ef9b6280953d1a2f0cf8b6ed8fb1ee98f1b03b283d9efea486bbe
- SSDEEP
  
  12288:a5fGb1H6R7sCRcquxJJctlPkiXpiCC0QSRvb6zboi7J4EPL40j9q4Jnr5cMDwXBM:awb1RhCNE7r
Score

10^/10

asyncrat default rat
- AsyncRat
  AsyncRAT is designed to remotely monitor and control other computers written in C#.
  rat asyncrat
- Asyncrat family
  asyncrat
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

ratdefaultasyncrat

behavioral1

asyncratdefaultrat

behavioral2

asyncratdefaultrat