ef047ee404b42840a4094dd67ca0330a1623724dc537fbe84fe52c2111633141

Submit
Reports

Overview

overview

Static

static

Async_RAT_...on.rar

windows7-x64

Async_RAT_...on.rar

windows10-2004-x64

Async RAT ...AT.exe

windows7-x64

Async RAT ...AT.exe

windows10-2004-x64

Async RAT ...xe.xml

windows7-x64

Async RAT ...xe.xml

windows10-2004-x64

Async RAT ...ox.xml

windows7-x64

Async RAT ...ox.xml

windows10-2004-x64

Async RAT ...at.dll

windows7-x64

Async RAT ...at.dll

windows10-2004-x64

Async RAT ...ra.dll

windows7-x64

Async RAT ...ra.dll

windows10-2004-x64

Async RAT ...er.dll

windows7-x64

Async RAT ...er.dll

windows10-2004-x64

Async RAT ...er.dll

windows7-x64

Async RAT ...er.dll

windows10-2004-x64

Async RAT ...er.dll

windows7-x64

Async RAT ...er.dll

windows10-2004-x64

Async RAT ...us.dll

windows7-x64

Async RAT ...us.dll

windows10-2004-x64

Async RAT ...on.xml

windows7-x64

Async RAT ...on.xml

windows10-2004-x64

Async RAT ...ns.dll

windows7-x64

Async RAT ...ns.dll

windows10-2004-x64

Async RAT ...er.dll

windows7-x64

Async RAT ...er.dll

windows10-2004-x64

Async RAT ...ry.dll

windows7-x64

Async RAT ...ry.dll

windows10-2004-x64

Async RAT ...ra.dll

windows7-x64

Async RAT ...ra.dll

windows10-2004-x64

Async RAT ...op.dll

windows7-x64

Async RAT ...op.dll

windows10-2004-x64

Resubmissions

22/01/2025, 03:19

250122-dvay4avrat 10

22/01/2025, 03:06

250122-dlynssvmhx 10

22/01/2025, 02:59

250122-dg5xbavldv 10

Analysis

max time kernel
148s
max time network
151s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
22/01/2025, 02:59

Sharing

Copy URL

Twitter E-mail

Static task

static1

rat asyncrat

4 signatures

Behavioral task

behavioral1

Sample

Async_RAT_v0.5.8_Turkce_Versiyon.rar

Resource

win7-20240903-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

Async_RAT_v0.5.8_Turkce_Versiyon.rar

Resource

win10v2004-20241007-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral3

Sample

Async RAT v0.5.8 Türkçe Versiyon/AsyncRAT.exe

Resource

win7-20241010-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral4

Sample

Async RAT v0.5.8 Türkçe Versiyon/AsyncRAT.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral5

Sample

Async RAT v0.5.8 Türkçe Versiyon/AsyncRAT.exe.xml

Resource

win7-20240903-en

discovery

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral6

Sample

Async RAT v0.5.8 Türkçe Versiyon/AsyncRAT.exe.xml

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

Async RAT v0.5.8 Türkçe Versiyon/FastColoredTextBox.xml

Resource

win7-20240903-en

discovery

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral8

Sample

Async RAT v0.5.8 Türkçe Versiyon/FastColoredTextBox.xml

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/Chat.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/Chat.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/Extra.dll

Resource

win7-20240708-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/Extra.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/FileManager.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/FileManager.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/FileSearcher.dll

Resource

win7-20241010-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/FileSearcher.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/LimeLogger.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/LimeLogger.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/Miscellaneous.dll

Resource

win7-20241010-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/Miscellaneous.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/Newtonsoft.Json.xml

Resource

win7-20240729-en

discovery

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral22

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/Newtonsoft.Json.xml

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/Options.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/Options.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/ProcessManager.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/ProcessManager.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/Recovery.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/Recovery.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/RemoteCamera.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/RemoteCamera.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/RemoteDesktop.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

Async RAT v0.5.8 Türkçe Versiyon/Plugins/RemoteDesktop.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

Async RAT v0.5.8 Türkçe Versiyon/FastColoredTextBox.xml
Size

132KB
MD5

70d49dec6a333f1d94fb1e77c663525c
SHA1

184b544e672f4c4cb9ed9cf010da568eed16623d
SHA256

f3f2e537065317b6ce66dac64042e925bbcea65f00561f9860b7172c9ca07027
SHA512

b78a3c4418a7c5014eb16e72f2113f00353e9e566942f7160067c826c47f1ec2752ae7ede796fc159fb9bae499d347f822401fbc4446e2556cbd680cd595c2e2
SSDEEP

1536:45SVw7sekyF7o//t3zEzacGE5xa5lIV1/P5:45Sm7sekyxo//xzEz3GlM

Score

1^/10

Malware Config

Signatures

Processes

C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLED.EXE
"C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLED.EXE" /verb open "C:\Users\Admin\AppData\Local\Temp\Async RAT v0.5.8 Türkçe Versiyon\FastColoredTextBox.xml"
1⤵
PID:4480

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/4480-0-0x00007FF9FF570000-0x00007FF9FF580000-memory.dmp

Filesize
64KB

Download
memory/4480-1-0x00007FFA3F58D000-0x00007FFA3F58E000-memory.dmp

Filesize
4KB

Download
memory/4480-2-0x00007FFA3F4F0000-0x00007FFA3F6E5000-memory.dmp

Filesize
2.0MB

Download
memory/4480-3-0x00007FFA3F4F0000-0x00007FFA3F6E5000-memory.dmp

Filesize
2.0MB

Download