Concrete signature match: Backdoor - Provides unauthorized remote access for .NET (Microsoft Intermediate Language) platform, family AsyncRat
This detection identifies AsyncRAT, a well-known Remote Access Trojan (RAT) that provides an attacker with full remote control over the compromised system. Once installed, it can be used to steal sensitive information, log keystrokes, exfiltrate files, and execute arbitrary commands.
No specific strings found for this threat
efb5fe1bf58eadc4d69693fe09cbf494d676f7916bfd4747b8beca9a09d57b6012f69604826f63850bdfc60b9c418d1d24f50ded7daf00b38d8bbdad9fb4313c6de38059ce607777a5dd93d99d4e5b8ad7552e3f105745389d8eb02b5899bdae2c382f00d6e1aab4af1dbfc44a0e2af6ea8611f76013a06a2484bbba4f7d28efbde1d12e4a9141145fc6a6f1d5aceccf8db3aa3ebe77a7c1e47f09f8ea11b37cIsolate the machine from the network immediately. Use Windows Defender to remove the threat, then perform a full system scan. Since this is a backdoor, assume a full system compromise: investigate the initial access vector and reset all user credentials.