asyncrat | 9ff1b78a5ac5c9177f0b021a029cc48a328a392542f53025763c85d516c3694b | Triage

Submit
Reports

Overview

overview

Static

static

owowooww.exe

windows7-x64

owowooww.exe

windows10-2004-x64

Sharing

General

Target

owowooww.exe
Size

74KB
Sample

250208-tbs9bstlhs
MD5

a5d197c74f9b3846ff3b7e32a3387226
SHA1

622c604a072f63be1f7d6c38ae16ed742edeb41d
SHA256

9ff1b78a5ac5c9177f0b021a029cc48a328a392542f53025763c85d516c3694b
SHA512

5d21f46a1553d319751a83a2b7dd18e11c0819a27c85e1bcd671e51438c0f82bf3eec8481fb36fa5bc88e723c8dc56347d97efe164962e321224c37380fc711e
SSDEEP

1536:1ULkcxVKpC6yPMVKe9VdQuDI6H1bf/+CPlQzcGLVclN:1UocxVENyPMVKe9VdQsH1bfFlQfBY

Score

10^/10

asyncrat venomrat default discovery rat

Static task

static1

rat default asyncrat venomrat

5 signatures

Behavioral task

behavioral1

Sample

owowooww.exe

Resource

win7-20250207-en

asyncrat venomrat default rat

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

owowooww.exe

Resource

win10v2004-20250207-en

asyncrat venomrat default discovery rat

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Extracted

Family

asyncrat

Version

Venom RAT + HVNC + Stealer + Grabber v6.0.3

Botnet

Default

Mutex

htbhezixkkhscrmzee

Attributes

delay
1
install
false
install_folder
%AppData%
pastebin_config
https://pastebin.com/raw/L746Mrwz

aes.plain

Targets

- Target
  
  owowooww.exe
- Size
  
  74KB
- MD5
  
  a5d197c74f9b3846ff3b7e32a3387226
- SHA1
  
  622c604a072f63be1f7d6c38ae16ed742edeb41d
- SHA256
  
  9ff1b78a5ac5c9177f0b021a029cc48a328a392542f53025763c85d516c3694b
- SHA512
  
  5d21f46a1553d319751a83a2b7dd18e11c0819a27c85e1bcd671e51438c0f82bf3eec8481fb36fa5bc88e723c8dc56347d97efe164962e321224c37380fc711e
- SSDEEP
  
  1536:1ULkcxVKpC6yPMVKe9VdQuDI6H1bf/+CPlQzcGLVclN:1UocxVENyPMVKe9VdQsH1bfFlQfBY
Score

10^/10

asyncrat venomrat default rat discovery
- AsyncRat
  AsyncRAT is designed to remotely monitor and control other computers written in C#.
  rat asyncrat
- Asyncrat family
  asyncrat
- VenomRAT
  Detects VenomRAT.
  rat
- Venomrat family
  venomrat
- Downloads MZ/PE file
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

ratdefaultasyncratvenomrat

behavioral1

asyncratvenomratdefaultrat

behavioral2

asyncratvenomratdefaultdiscoveryrat

© 2018-2025

Terms | Privacy