ioc[.]one - OSINT Cyber Threat Intelligence Database

AsyncRAT's Infection Tactics via Open Directories: Technical Analysis - Cybersecurity Insiders

Tags

attack-pattern:

Dns - T1071.004 Dns - T1590.002 Malware - T1587.001 Malware - T1588.001 Powershell - T1059.001 Scheduled Task - T1053.005 Powershell - T1086 Scheduled Task - T1053

Show in Graph

Common Information

Type	Value
UUID	defd4200-b831-42c4-8d10-952e7dee779e
Fingerprint	a404add26c3a0be6
Analysis status	DONE
Considered CTI value	0
Text language
Published	Nov. 10, 2024, 12:55 a.m.
Added to db	Nov. 10, 2024, 6:46 a.m.
Last updated	Nov. 15, 2024, 4:38 p.m.
Headline	AsyncRAT’s Infection Tactics via Open Directories: Technical Analysis
Title	AsyncRAT's Infection Tactics via Open Directories: Technical Analysis - Cybersecurity Insiders
Detected Hints/Tags/Attributes	38/1/10

Source URLs

	Redirection	Url
Details	Source	https://www.cybersecurity-insiders.com/asyncrats-infection-tactics-via-open-directories-technical-analysis/?utm_source=rss&utm_medium=rss&utm_campaign=asyncrats-infection-tactics-via-open-directories-technical-analysis

URL Provider

Details	Provider	Source level domain
Details	cybersecurity-insiders.com	www.cybersecurity-insiders.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	297	✔	Cybersecurity Insiders	https://www.cybersecurity-insiders.com/feed/	2024-08-30 22:08

Attributes

Details	Type	#Events	CTI	Value
Details	Domain	911		any.run
Details	File	3		omjrrrrrrrrrrrrrrrrrrrrvbk.xml
Details	File	3		teskkkelavaydafbbs.vbs
Details	File	3		kkkkkklllavioooootesaa.bat
Details	File	3		kilovberndautesaatnenn.ps1
Details	File	3		uhlqoydamacutpae.vbs
Details	File	3		aaanootkiiilaviiiioos.bat
Details	File	3		roox.ps1
Details	File	3		roox.bat
Details	File	3		roox.vbs