Extracted

• • Target

    ProximaCLient.exe

  • Size

    62KB

  • MD5

    9b58a4fad9c0ddace097997174a11175

  • SHA1

    aad8aaac4ac821a047d68d90bb3266d73e5f6457

  • SHA256

    7bb046bb513f61bb2f038262e0355f239b0daefc081619cb51039bf0cf796033

  • SHA512

    dc27a308b85434804249751deb19eb8ccbcef8c53ca5af6f662b74e41da4763593388c75216ceda66b83b5213a8c55c662d485ae70d9b9abc33bee3e053bb6ba

  • SSDEEP

    1536:Nu2etT/+No2KISb6/N6FbbAb2FftIVZNdCwdAoeWYx:Nu2aT/+No2KISb6/N4bbAUeVZvB8px

  Score

  10^/10

  asyncratdefaultdiscoveryrat

  • AsyncRat

    AsyncRAT is designed to remotely monitor and control other computers written in C#.

    ratasyncrat

  • Asyncrat family

    asyncrat

  • Async RAT payload

    rat

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Executes dropped EXE

  • Loads dropped DLL

  behavioral1behavioral2