asyncrat | c6688fc9072550666474d1362399f978cfafe47c04ce7c5a7d5ff359f72c1bb2 | Triage

Sharing

General

Target

AsyncClient.exe
Size

48KB
Sample

250302-ssb6psxtfs
MD5

4693f7b2e04b013ba3d535d9898ee4b5
SHA1

4a97bdecf8a9a42203f028010916e2937b12f3ca
SHA256

c6688fc9072550666474d1362399f978cfafe47c04ce7c5a7d5ff359f72c1bb2
SHA512

3306f22eb9530761d2df47c9f75d3eddff83e42566054f214aa9fb57a16da369e50ef3d5cc5a54c833ffdc864b8ad2bc34755938d0053a20d3342219c5181d6d
SSDEEP

768:3u2/0TckJ26WUsFvgmo2q70jbLAKlkrU0sPIGqfCU0b1WSKL8m2h3eWOBlMrL/rL:3u2/0TceH2BjgAkfRGqfIb1NKcZJf1dr

Score

10^/10

asyncrat default discovery rat

Malware Config

Extracted

Family

asyncrat

Version

0.5.8

Botnet

Default

C2

197.48.74.234:6606

Mutex

psPMs1h7bYqT

Attributes

delay
3
install
false
install_file
AsyncRAT.exe
install_folder
%AppData%

aes.plain

Targets

- Target
  
  AsyncClient.exe
- Size
  
  48KB
- MD5
  
  4693f7b2e04b013ba3d535d9898ee4b5
- SHA1
  
  4a97bdecf8a9a42203f028010916e2937b12f3ca
- SHA256
  
  c6688fc9072550666474d1362399f978cfafe47c04ce7c5a7d5ff359f72c1bb2
- SHA512
  
  3306f22eb9530761d2df47c9f75d3eddff83e42566054f214aa9fb57a16da369e50ef3d5cc5a54c833ffdc864b8ad2bc34755938d0053a20d3342219c5181d6d
- SSDEEP
  
  768:3u2/0TckJ26WUsFvgmo2q70jbLAKlkrU0sPIGqfCU0b1WSKL8m2h3eWOBlMrL/rL:3u2/0TceH2BjgAkfRGqfIb1NKcZJf1dr
Score

10^/10

asyncrat default discovery rat
- AsyncRat
  AsyncRAT is designed to remotely monitor and control other computers written in C#.
  rat asyncrat
- Asyncrat family
  asyncrat
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

ratdefaultasyncrat

behavioral1

asyncratdefaultdiscoveryrat

behavioral2

asyncratdefaultdiscoveryrat