dllservices.exe

General
Target

dllservices.exe

Size

448KB

Sample

210111-7d6n1msnv2

Score
10 /10
MD5

eff1b26ff5763d25e892761a02dd2e7c

SHA1

17b677b9f58b54508324da8ab15bc67c66f5f55e

SHA256

ada0493109fcfa84a332ad136f04a96ca7eadc323b57cdce2e6fe3066c37321e

SHA512

53f0e1448ead9098a8efba367c32c1d3f7db09362eba7a62a409cde55d9876e3271dd55017abbdecfbf2abd2da393a5e7ba69bcd065f613d7010e259d43e9721

Malware Config
Targets
Target

dllservices.exe

MD5

eff1b26ff5763d25e892761a02dd2e7c

Filesize

448KB

Score
10 /10
SHA1

17b677b9f58b54508324da8ab15bc67c66f5f55e

SHA256

ada0493109fcfa84a332ad136f04a96ca7eadc323b57cdce2e6fe3066c37321e

SHA512

53f0e1448ead9098a8efba367c32c1d3f7db09362eba7a62a409cde55d9876e3271dd55017abbdecfbf2abd2da393a5e7ba69bcd065f613d7010e259d43e9721

Tags

Signatures

  • DcRat

    Description

    DarkCrystal(DC) is a new .NET RAT active since June 2019 capable of loading additional plugins.

    Tags

  • DC Rat Payload

    Description

    Detects payload of DCRat, commonly dropped by NSIS installers.

    Tags

  • Executes dropped EXE

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                      Privilege Escalation
                        Tasks

                        static1

                        behavioral1

                        10/10