asyncrat | fa1453d9a47f699d10b4b35cbdfb63d78529b4ee73256e64362f25584520d6c5 | Triage

Sharing

General

Target

MarlbotV4.exe
Size

394.0MB
Sample

250330-sahkrstj16
MD5

f3cbe54ca8c7aabd1322a7418981f519
SHA1

fb42365dcc73e577374be4a12cfd73466f58f068
SHA256

fa1453d9a47f699d10b4b35cbdfb63d78529b4ee73256e64362f25584520d6c5
SHA512

9f225a8ec5de4ace70159e0f6e759a9b616ad833997bc19c458504c1eda3db8ce5622542edc29c2685d045fac96b79ed1fb80a106687e856811a813d3dfca5f9
SSDEEP

1536:mUrwcx3bxACE/PMVSe9VdQuDI6H1bf/K0oQzcyLVclN:mUscx3bqv/PMVSe9VdQsH1bf0QjBY

Score

10^/10

asyncrat 1st people rat

Malware Config

Extracted

Family

asyncrat

Version

Venom RAT + HVNC + Stealer + Grabber v6.0.3

Botnet

1st People

C2

193.161.193.99:56266

Mutex

75686758786

Attributes

delay
1
install
false
install_file
12345
install_folder
%Temp%

aes.plain

Targets

- Target
  
  MarlbotV4.exe
- Size
  
  394.0MB
- MD5
  
  f3cbe54ca8c7aabd1322a7418981f519
- SHA1
  
  fb42365dcc73e577374be4a12cfd73466f58f068
- SHA256
  
  fa1453d9a47f699d10b4b35cbdfb63d78529b4ee73256e64362f25584520d6c5
- SHA512
  
  9f225a8ec5de4ace70159e0f6e759a9b616ad833997bc19c458504c1eda3db8ce5622542edc29c2685d045fac96b79ed1fb80a106687e856811a813d3dfca5f9
- SSDEEP
  
  1536:mUrwcx3bxACE/PMVSe9VdQuDI6H1bf/K0oQzcyLVclN:mUscx3bqv/PMVSe9VdQsH1bf0QjBY
Score

10^/10

asyncrat 1st people rat
- AsyncRat
  AsyncRAT is designed to remotely monitor and control other computers written in C#.
  rat asyncrat
- Asyncrat family
  asyncrat
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

asyncrat1st peoplerat