ef047ee404b42840a4094dd67ca0330a1623724dc537fbe84fe52c2111633141 | Triage

Submit
Reports

Overview

overview

Static

static

Async_RAT_...on.rar

windows7-x64

1

Async_RAT_...on.rar

windows10-2004-x64

7

Async RAT ...AT.exe

windows7-x64

1

Async RAT ...AT.exe

windows10-2004-x64

1

Async RAT ...xe.xml

windows7-x64

3

Async RAT ...xe.xml

windows10-2004-x64

1

Async RAT ...ox.xml

windows7-x64

3

Async RAT ...ox.xml

windows10-2004-x64

1

Async RAT ...at.dll

windows7-x64

1

Async RAT ...at.dll

windows10-2004-x64

1

Async RAT ...ra.dll

windows7-x64

1

Async RAT ...ra.dll

windows10-2004-x64

1

Async RAT ...er.dll

windows7-x64

1

Async RAT ...er.dll

windows10-2004-x64

1

Async RAT ...er.dll

windows7-x64

1

Async RAT ...er.dll

windows10-2004-x64

1

Async RAT ...er.dll

windows7-x64

1

Async RAT ...er.dll

windows10-2004-x64

1

Async RAT ...us.dll

windows7-x64

1

Async RAT ...us.dll

windows10-2004-x64

1

Async RAT ...on.xml

windows7-x64

3

Async RAT ...on.xml

windows10-2004-x64

1

Async RAT ...ns.dll

windows7-x64

1

Async RAT ...ns.dll

windows10-2004-x64

1

Async RAT ...er.dll

windows7-x64

1

Async RAT ...er.dll

windows10-2004-x64

1

Async RAT ...ry.dll

windows7-x64

1

Async RAT ...ry.dll

windows10-2004-x64

1

Async RAT ...ra.dll

windows7-x64

1

Async RAT ...ra.dll

windows10-2004-x64

1

Async RAT ...op.dll

windows7-x64

1

Async RAT ...op.dll

windows10-2004-x64

1

Resubmissions

22/01/2025, 03:19

250122-dvay4avrat 10

22/01/2025, 03:06

250122-dlynssvmhx 10

22/01/2025, 02:59

250122-dg5xbavldv 10

Analysis

max time kernel
91s
max time network
151s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
22/01/2025, 02:59

Sharing

Static task

static1

4 signatures

Behavioral task

behavioral1

Sample

Async_RAT_v0.5.8_Turkce_Versiyon.rar

Resource

win7-20240903-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

Async_RAT_v0.5.8_Turkce_Versiyon.rar

Resource

win10v2004-20241007-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral3

Sample

Async RAT v0.5.8 Türkçe Versiyon/AsyncRAT.exe

Resource

win7-20241010-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral4

Sample

Async RAT v0.5.8 Türkçe Versiyon/AsyncRAT.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral5

Sample

Async RAT v0.5.8 Türkçe Versiyon/AsyncRAT.exe.xml

Resource

win7-20240903-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral6

Sample

Async RAT v0.5.8 Türkçe Versiyon/AsyncRAT.exe.xml

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

Async RAT v0.5.8 Türkçe Versiyon/FastColoredTextBox.xml

Resource

win7-20240903-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral8

Sample

Async RAT v0.5.8 Türkçe Versiyon/FastColoredTextBox.xml

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/Chat.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/Chat.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/Extra.dll

Resource

win7-20240708-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/Extra.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/FileManager.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/FileManager.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/FileSearcher.dll

Resource

win7-20241010-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/FileSearcher.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/LimeLogger.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/LimeLogger.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/Miscellaneous.dll

Resource

win7-20241010-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/Miscellaneous.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/Newtonsoft.Json.xml

Resource

win7-20240729-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral22

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/Newtonsoft.Json.xml

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/Options.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/Options.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/ProcessManager.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/ProcessManager.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/Recovery.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/Recovery.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/RemoteCamera.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/RemoteCamera.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/RemoteDesktop.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/RemoteDesktop.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

Async RAT v0.5.8 Türkçe Versiyon/Plugins/Newtonsoft.Json.xml
Size

548KB
MD5

928ed37db61c1e98a2831c8c01f6157c
SHA1

98103c2133ebda28be78bfe3e2d81d41924a23ee
SHA256

39f6a4db1be658d6baff643fa05aae7809139d9665475bfca10d37dca3384f21
SHA512

f59387bfa914c7db234161e31ad6075031aca17aaef4b8d4f4b95c78c7a6a8d0e64211566ca2fd4549b9da45231f57a4191fbcd3809404653f86ee2abd4937a4
SSDEEP

6144:XqqUmk/Rik2rH6dl0/IaHNpOVIeR0R+CRFo9TA82m5Kj+sJjoqoyO185QyMYFLse:DUK

Score

1^/10

Malware Config

Signatures

Processes

C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLED.EXE
"C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLED.EXE" /verb open "C:\Users\Admin\AppData\Local\Temp\Async RAT v0.5.8 Türkçe Versiyon\Plugins\Newtonsoft.Json.xml"
1⤵
PID:3016

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/3016-1-0x00007FFD327ED000-0x00007FFD327EE000-memory.dmp

Filesize
4KB

Download
memory/3016-0-0x00007FFCF27D0000-0x00007FFCF27E0000-memory.dmp

Filesize
64KB

Download
memory/3016-2-0x00007FFD32750000-0x00007FFD32945000-memory.dmp

Filesize
2.0MB

Download
memory/3016-3-0x00007FFD32750000-0x00007FFD32945000-memory.dmp

Filesize
2.0MB

Download
memory/3016-4-0x00007FFD32750000-0x00007FFD32945000-memory.dmp

Filesize
2.0MB

Download

© 2018-2025

Terms | Privacy