General
-
Target
Spotify.exe
-
Size
108KB
-
MD5
a6c34258e0f4969327d5115ccd153758
-
SHA1
f2ce4e1748b0b211a08a5a871d4dac68958ba9d3
-
SHA256
a8dec7685cba26def47b375d92879d4246996121eaf68978e099a3da21df866e
-
SHA512
d441823e650a65301d5ff222612d1b141182f8f9b35c9a67122e5e6c78fc76b48c402e8fb7ce52a0f1367d59db13c09030de0f07a3a62afd5c9296060c98412a
-
SSDEEP
3072:bUmcxV4x7PMVee9VdQgH1bfRQiKYWwhHYa:blx7PMVeaegVbZC47
Score
10/10
Malware Config
Extracted
Family
asyncrat
Version
Venom RAT + HVNC + Stealer + Grabber v6.0.3
Botnet
Default
C2
193.161.193.99:52920
193.161.193.99:3333
Mutex
nfpzlqliopdz
Attributes
-
delay
1
-
install
false
-
install_folder
%AppData%
aes.plain
Signatures
-
Asyncrat family
-
VenomRAT 1 IoCs
Detects VenomRAT.
-
Venomrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
Spotify.exe
Headers
Sections