asyncrat | 9c55248df602d934cc7f54b56b152cd5e02222109f1547302f13f94380c08e32 | Triage

Submit
Reports

Overview

overview

Static

static

3

2025-04-05...xz.exe

windows10-2004-x64

Sharing

General

Target

2025-04-05_9c98dc43dc994609c78345135b429b97_black-basta_cobalt-strike_coinminer_satacom_zxxz
Size

73.6MB
Sample

250405-dz7tmaywfz
MD5

9c98dc43dc994609c78345135b429b97
SHA1

f08ac25c89e3dbe81d4fcdb5227fce849279e803
SHA256

9c55248df602d934cc7f54b56b152cd5e02222109f1547302f13f94380c08e32
SHA512

bf782f60171734dc6c67e37ca74f4c1df06ad45938a28dd21ef278908f35c78f1c2ea9b74f2263d5ccebe95a155d4d70e3744f57abae15aaa0b3e928881b983a
SSDEEP

393216:C76L6otUitqtH7wHtXq2pt2jbOCacCFIK0fpP9HF4VW8yf7nVQx4urYsANulL7N1:C0LoCOn+27s4urYDNulLBiup

Score

10^/10

asyncrat stormkitty venomrat discovery rat stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2025-04-05_9c98dc43dc994609c78345135b429b97_black-basta_cobalt-strike_coinminer_satacom_zxxz.exe

Resource

win10v2004-20250314-en

asyncrat stormkitty venomrat discovery rat stealer

windows10-2004-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  2025-04-05_9c98dc43dc994609c78345135b429b97_black-basta_cobalt-strike_coinminer_satacom_zxxz
- Size
  
  73.6MB
- MD5
  
  9c98dc43dc994609c78345135b429b97
- SHA1
  
  f08ac25c89e3dbe81d4fcdb5227fce849279e803
- SHA256
  
  9c55248df602d934cc7f54b56b152cd5e02222109f1547302f13f94380c08e32
- SHA512
  
  bf782f60171734dc6c67e37ca74f4c1df06ad45938a28dd21ef278908f35c78f1c2ea9b74f2263d5ccebe95a155d4d70e3744f57abae15aaa0b3e928881b983a
- SSDEEP
  
  393216:C76L6otUitqtH7wHtXq2pt2jbOCacCFIK0fpP9HF4VW8yf7nVQx4urYsANulL7N1:C0LoCOn+27s4urYDNulLBiup
Score

10^/10

asyncrat stormkitty venomrat discovery rat stealer
- AsyncRat
  AsyncRAT is designed to remotely monitor and control other computers written in C#.
  rat asyncrat
- Asyncrat family
  asyncrat
- StormKitty
  StormKitty is an open source info stealer written in C#.
  stealer stormkitty
- StormKitty payload
- Stormkitty family
  stormkitty
- VenomRAT
  Detects VenomRAT.
  rat
- Venomrat family
  venomrat
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

asyncratstormkittyvenomratdiscoveryratstealer

© 2018-2025

Terms | Privacy