Overview

overview

10

Static

static

10

Async_RAT_...on.rar

windows7-x64

1

Async_RAT_...on.rar

windows10-2004-x64

7

Async RAT ...AT.exe

windows7-x64

1

Async RAT ...AT.exe

windows10-2004-x64

1

Async RAT ...xe.xml

windows7-x64

3

Async RAT ...xe.xml

windows10-2004-x64

1

Async RAT ...ox.xml

windows7-x64

3

Async RAT ...ox.xml

windows10-2004-x64

1

Async RAT ...at.dll

windows7-x64

1

Async RAT ...at.dll

windows10-2004-x64

1

Async RAT ...ra.dll

windows7-x64

1

Async RAT ...ra.dll

windows10-2004-x64

1

Async RAT ...er.dll

windows7-x64

1

Async RAT ...er.dll

windows10-2004-x64

1

Async RAT ...er.dll

windows7-x64

1

Async RAT ...er.dll

windows10-2004-x64

1

Async RAT ...er.dll

windows7-x64

1

Async RAT ...er.dll

windows10-2004-x64

1

Async RAT ...us.dll

windows7-x64

1

Async RAT ...us.dll

windows10-2004-x64

1

Async RAT ...on.xml

windows7-x64

3

Async RAT ...on.xml

windows10-2004-x64

1

Async RAT ...ns.dll

windows7-x64

1

Async RAT ...ns.dll

windows10-2004-x64

1

Async RAT ...er.dll

windows7-x64

1

Async RAT ...er.dll

windows10-2004-x64

1

Async RAT ...ry.dll

windows7-x64

1

Async RAT ...ry.dll

windows10-2004-x64

1

Async RAT ...ra.dll

windows7-x64

1

Async RAT ...ra.dll

windows10-2004-x64

1

Async RAT ...op.dll

windows7-x64

1

Async RAT ...op.dll

windows10-2004-x64

1

Resubmissions

22/01/2025, 03:19

250122-dvay4avrat 10

22/01/2025, 03:06

250122-dlynssvmhx 10

22/01/2025, 02:59

250122-dg5xbavldv 10

Analysis

  • max time kernel
    150s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20241010-en
  • resource tags

    arch:x64arch:x86image:win7-20241010-enlocale:en-usos:windows7-x64system
  • submitted
    22/01/2025, 02:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Async RAT v0.5.8 Türkçe Versiyon/AsyncRAT.exe

  • Size

    6.6MB

  • MD5

    d9b0dd1451164fe93b0161d8a324e5ef

  • SHA1

    727956da8202910e55a856232886587fda7bd327

  • SHA256

    c49408393db15b24a5df9bcb194a50d646698d2c5ffa326c15e68db08a5f2a79

  • SHA512

    7c73bce623bc727530be91697d5d919f5c65d9908b8108e694bfc0cf140d65b10d2f0d035e1b5ab64e36bc441f39167bee40b4573edeac2420904795d108fa3d

  • SSDEEP

    98304:KbPmDVa3VxobFZ4Mj8NN5xXhAqin130T+SrpC6xJJ33Je2mCrPkwy0hy:K7aISjQNN5htinQfBHJDNscE

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 10 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SendNotifyMessage 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Async RAT v0.5.8 Türkçe Versiyon\AsyncRAT.exe
    "C:\Users\Admin\AppData\Local\Temp\Async RAT v0.5.8 Türkçe Versiyon\AsyncRAT.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    PID:3064
  • C:\Windows\system32\wbem\WmiApSrv.exe
    C:\Windows\system32\wbem\WmiApSrv.exe
    1⤵
      PID:1200

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/3064-0-0x000007FEF5FA3000-0x000007FEF5FA4000-memory.dmp

      Filesize

      4KB

      Download

    • memory/3064-1-0x00000000003B0000-0x0000000000A4C000-memory.dmp

      Filesize

      6.6MB

      Download

    • memory/3064-3-0x000000001BB70000-0x000000001BDC2000-memory.dmp

      Filesize

      2.3MB

      Download

    • memory/3064-4-0x000007FEF5FA0000-0x000007FEF698C000-memory.dmp

      Filesize

      9.9MB

      Download

    • memory/3064-5-0x000007FEF5FA0000-0x000007FEF698C000-memory.dmp

      Filesize

      9.9MB

      Download

    • memory/3064-6-0x000007FEF5FA0000-0x000007FEF698C000-memory.dmp

      Filesize

      9.9MB

      Download

    • memory/3064-7-0x000007FEF5FA3000-0x000007FEF5FA4000-memory.dmp

      Filesize

      4KB

      Download

    • memory/3064-8-0x000007FEF5FA0000-0x000007FEF698C000-memory.dmp

      Filesize

      9.9MB

      Download

    • memory/3064-9-0x000007FEF5FA0000-0x000007FEF698C000-memory.dmp

      Filesize

      9.9MB

      Download

    • memory/3064-10-0x000007FEF5FA0000-0x000007FEF698C000-memory.dmp

      Filesize

      9.9MB

      Download