asyncrat

General

Target

2025Proposal-AISeriesDocs.zip
Size

43.8MB
Sample

250405-gy945s11fx
MD5

ab6ebf5de507d9177b61b6edb90f63c7
SHA1

72bb61074b2879dbbcbc108e9781e6765be5f9d0
SHA256

4b9c7b27687d675e916726f1ad790c03c58815974f0c1a525ab15fa018be1f10
SHA512

ba817fb57e6fed96999ad891c569a6b47f4afb40c8e851731021c24aea09a14d01cb6d74a39ad45e4cdfe0840221c8169c47a68160f3e28067165335ec103d54
SSDEEP

786432:PRQi5oIWq+WWRt4JLVG5m5sI/z1PQH7epLi0cpzxfD1oFVy:6EGqs4J54mWIr1PQHy9ctQFVy

Score

10^/10

Malware Config

Targets

- Target
  
  2025 Proposal - AI Series Docs.exe
- Size
  
  6.1MB
- MD5
  
  f132c32b7b68fdefc276ae768e4c40f8
- SHA1
  
  a61f091e0b3ff7b246f4b81c871f10da0eb21c00
- SHA256
  
  f2178c9ed9d6f6140b1735767332e04f47ca317bd246022a297145478678bc4b
- SHA512
  
  0d5598660eddf8badb52b12f95b9d2fdd520ce5e9eb376123f1694282c8142b8931cc1f6f73e442f287afb662d666fb64c95cdd6e5febf9c464008eafd314676
- SSDEEP
  
  98304:HZQIM+/nv/CDoAkYwpAa5ge1zZ/jtdZwUkQ:9JCKlA2VKUz
Score

10^/10

asyncrat stormkitty venomrat discovery persistence rat stealer
- AsyncRat
  AsyncRAT is designed to remotely monitor and control other computers written in C#.
  rat asyncrat
- Asyncrat family
  asyncrat
- StormKitty
  StormKitty is an open source info stealer written in C#.
  stealer stormkitty
- StormKitty payload
- Stormkitty family
  stormkitty
- VenomRAT
  Detects VenomRAT.
  rat
- Venomrat family
  venomrat
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1
- Target
  
  oledlg.dll
- Size
  
  82.2MB
- MD5
  
  293af7be4364bcc7086eb7d69a32a02d
- SHA1
  
  fe0ef6cf1c053b4b4de4ba1ed1536a1f7d88074f
- SHA256
  
  a26a65ffb73eb8ffe3a809e2768c9c9da4838581463b09ba38c19ef9950e7e84
- SHA512
  
  7e870a549580a96ae213d43439216cea5bf58c244eaeba7e8161771220f8ad17560b7aaeac8b00d41f76ac12c9df23aa61eaaab138db4a9e078135cdfb0051da
- SSDEEP
  
  1572864:lvEfH6aannL/Ms/P97+IN2rn26sLBqaxsoJtW5hcpD3jgx0NiX:1EgnVl1DDkfX
Score

3^/10

discovery
behavioral2