General
-
Target
prooo.exe
-
Size
630KB
-
Sample
240705-l5bx5syfld
-
MD5
b1f8551f746394ecefd44ed295db08d5
-
SHA1
23ecd8884b36a4e3d07efbd7cfce3e5b7269bdec
-
SHA256
95f31e32627f0f3934cd45c6d4dbd3783799b32b58cb22460553f6e142d8056d
-
SHA512
5e956230183e9f1286520b880e0472515fb0b1f9f13781c0ec24521260df93ddaeb043b6d91465994f8cf3b037f339153528157eadc29100a871126fbe859029
-
SSDEEP
12288:LBdlwHRn+WlYV+tLIpPWJr/GwUtmr0HfrBqIIjbSf2L0si:LBkVdlYAZIpPWJr/9Utmr0HfrBqIIj+P
Static task
static1
Behavioral task
behavioral1
Sample
prooo.exe
Resource
win11-20240704-en
Malware Config
Extracted
asyncrat
0.5.8
Default
five-sequences.gl.at.ply.gg:47561
1MTTlV03LJRj
-
delay
3
-
install
true
-
install_file
pro.exe
-
install_folder
%AppData%
Targets
-
-
Target
prooo.exe
-
Size
630KB
-
MD5
b1f8551f746394ecefd44ed295db08d5
-
SHA1
23ecd8884b36a4e3d07efbd7cfce3e5b7269bdec
-
SHA256
95f31e32627f0f3934cd45c6d4dbd3783799b32b58cb22460553f6e142d8056d
-
SHA512
5e956230183e9f1286520b880e0472515fb0b1f9f13781c0ec24521260df93ddaeb043b6d91465994f8cf3b037f339153528157eadc29100a871126fbe859029
-
SSDEEP
12288:LBdlwHRn+WlYV+tLIpPWJr/GwUtmr0HfrBqIIjbSf2L0si:LBkVdlYAZIpPWJr/9Utmr0HfrBqIIj+P
Score10/10-
Async RAT payload
-
Executes dropped EXE
-
Sets desktop wallpaper using registry
-