asyncrat | eb4dde3a53673d0bb16c5d4c80cd8a17128976badd6ff2aa5010364c42e1091f | Triage

Sharing

General

Target

1.exe
Size

706KB
Sample

250328-qd933swvhx
MD5

cea36ea3da046afb6dec951b751bee61
SHA1

a27bcfa338e14b3d57b8756a1c46a9ff6db3981d
SHA256

eb4dde3a53673d0bb16c5d4c80cd8a17128976badd6ff2aa5010364c42e1091f
SHA512

a4b31771f96f1452d3876ec42296a248897c7b0bc641e392ab4a3fd89c1c0549bebeeb13bf07238ff74665ef27fb5afab69b51bc95c8e3904c8d855a2fcf7946
SSDEEP

12288:Le0Lq+QD96jt6dFlCQcxBc1Jp7psZ1TN3Br8OQpE3G5WkFJsUP8H7m:q0LhQPQvoKZa

Score

10^/10

asyncrat venomrat test1 discovery persistence rat

Malware Config

Extracted

Family

asyncrat

Version

Venom RAT + HVNC + Stealer + Grabber v6.0.3

Botnet

Test1

C2

147.185.221.18:62592

Mutex

testing1

Attributes

delay
3
install
true
install_file
1.exe
install_folder
%AppData%

aes.plain

Targets

- Target
  
  1.exe
- Size
  
  706KB
- MD5
  
  cea36ea3da046afb6dec951b751bee61
- SHA1
  
  a27bcfa338e14b3d57b8756a1c46a9ff6db3981d
- SHA256
  
  eb4dde3a53673d0bb16c5d4c80cd8a17128976badd6ff2aa5010364c42e1091f
- SHA512
  
  a4b31771f96f1452d3876ec42296a248897c7b0bc641e392ab4a3fd89c1c0549bebeeb13bf07238ff74665ef27fb5afab69b51bc95c8e3904c8d855a2fcf7946
- SSDEEP
  
  12288:Le0Lq+QD96jt6dFlCQcxBc1Jp7psZ1TN3Br8OQpE3G5WkFJsUP8H7m:q0LhQPQvoKZa
Score

10^/10

discovery asyncrat venomrat test1 persistence rat
- AsyncRat
  AsyncRAT is designed to remotely monitor and control other computers written in C#.
  rat asyncrat
- Asyncrat family
  asyncrat
- VenomRAT
  Detects VenomRAT.
  rat
- Venomrat family
  venomrat
- Executes dropped EXE
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

asyncratvenomrattest1discoverypersistencerat