Extracted

• • Target

    nigga.exe

  • Size

    63KB

  • MD5

    abcbfb5453afe36e96134a59a56b458f

  • SHA1

    a03e3dd6a00abdd4157054384aa9c0f7d628c6f8

  • SHA256

    4e7d6048e7522e1eeebe24cd1df3070ebe3d865c4cc1c17a319f683d95f0c2b9

  • SHA512

    e4b0354556fdb940b8b060b26d88a4eb64c7e1af9c6f86fc7bd3a6de4bc952730aade09cd235d92c720df193fe70b10fe85fbded8aff824c048cbd3bfd549431

  • SSDEEP

    1536:H1/kDsLa3fblJpuCUbth9oiKTuwdpqKmY7:H6qa3PMCUbtOpGz

  Score

  10^/10

  asyncratstealeriumdefaultcollectiondiscoverypersistenceprivilege_escalationratspywarestealer

  • AsyncRat

    AsyncRAT is designed to remotely monitor and control other computers written in C#.

    ratasyncrat

  • Asyncrat family

    asyncrat

  • Stealerium

    An open source info stealer written in C# first seen in May 2022.

    stealerstealerium

  • Stealerium family

    stealerium

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses Microsoft Outlook profiles

    collection

  • Looks up external IP address via web service

    Uses a legitimate IP lookup service to find the infected system's external IP.

  • Looks up geolocation information via web service

    Uses a legitimate geolocation service to find the infected system's geolocation info.

  behavioral1