asyncrat | 0fbc9522bea75aaa0af04e252a09206170b17ff4811a930fe2a0c812a48c2382 | Triage

Sharing

General

Target

0fbc9522bea75aaa0af04e252a09206170b17ff4811a930fe2a0c812a48c2382
Size

48KB
Sample

250329-xynh5szxbz
MD5

e48fe350eb0aeb4cedafd2c9ae689c96
SHA1

d0fb07d47835b00d21d258dbcc0e673d1c1ae861
SHA256

0fbc9522bea75aaa0af04e252a09206170b17ff4811a930fe2a0c812a48c2382
SHA512

a9f5b762f7688ea06a72475beeb61b3bbc6d726122e470f6a6370c1c3c4fea4e85d5fc697843eb745ca5f079f0103a2500af9b669c886143d514631165c032b3
SSDEEP

768:OuUjVTwkbBHWU72ZcFmo2qj7bYZC25vPIk9vOfk0bmu1mF8hS+0FO2eefEBDZJS7:OuUjVTwA4M2vZC+ok4fHbm2S8hS+UfyG

Score

10^/10

asyncrat default discovery rat

Malware Config

Extracted

Family

asyncrat

Version

0.5.8

Botnet

Default

Mutex

9GqQYIlq5eZK

Attributes

delay
3
install
true
install_file
CheckerAVT.exe
install_folder
%AppData%
pastebin_config
https://pastebin.com/raw/63vbbiAr

aes.plain

Targets

- Target
  
  0fbc9522bea75aaa0af04e252a09206170b17ff4811a930fe2a0c812a48c2382
- Size
  
  48KB
- MD5
  
  e48fe350eb0aeb4cedafd2c9ae689c96
- SHA1
  
  d0fb07d47835b00d21d258dbcc0e673d1c1ae861
- SHA256
  
  0fbc9522bea75aaa0af04e252a09206170b17ff4811a930fe2a0c812a48c2382
- SHA512
  
  a9f5b762f7688ea06a72475beeb61b3bbc6d726122e470f6a6370c1c3c4fea4e85d5fc697843eb745ca5f079f0103a2500af9b669c886143d514631165c032b3
- SSDEEP
  
  768:OuUjVTwkbBHWU72ZcFmo2qj7bYZC25vPIk9vOfk0bmu1mF8hS+0FO2eefEBDZJS7:OuUjVTwA4M2vZC+ok4fHbm2S8hS+UfyG
Score

10^/10

asyncrat default discovery rat
- AsyncRat
  AsyncRAT is designed to remotely monitor and control other computers written in C#.
  rat asyncrat
- Asyncrat family
  asyncrat
- Async RAT payload
  rat
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

ratdefaultasyncrat

behavioral1

asyncratdefaultdiscoveryrat

behavioral2

asyncratdefaultdiscoveryrat