dcrat | ada0493109fcfa84a332ad136f04a96ca7eadc323b57cdce2e6fe3066c37321e | Triage

Submit
Reports

Overview

overview

Static

static

NoInternet-Win7-10min

windows7_x64

Sharing

General

Target

dllservices.exe
Size

448KB
Sample

210111-7d6n1msnv2
MD5

eff1b26ff5763d25e892761a02dd2e7c
SHA1

17b677b9f58b54508324da8ab15bc67c66f5f55e
SHA256

ada0493109fcfa84a332ad136f04a96ca7eadc323b57cdce2e6fe3066c37321e
SHA512

53f0e1448ead9098a8efba367c32c1d3f7db09362eba7a62a409cde55d9876e3271dd55017abbdecfbf2abd2da393a5e7ba69bcd065f613d7010e259d43e9721

Score

10^/10

dcrat infostealer rat

Static task

static1

Behavioral task

behavioral1

Sample

dllservices.exe

Resource

win7v20201028

dcrat infostealer rat

windows7_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  dllservices.exe
- Size
  
  448KB
- MD5
  
  eff1b26ff5763d25e892761a02dd2e7c
- SHA1
  
  17b677b9f58b54508324da8ab15bc67c66f5f55e
- SHA256
  
  ada0493109fcfa84a332ad136f04a96ca7eadc323b57cdce2e6fe3066c37321e
- SHA512
  
  53f0e1448ead9098a8efba367c32c1d3f7db09362eba7a62a409cde55d9876e3271dd55017abbdecfbf2abd2da393a5e7ba69bcd065f613d7010e259d43e9721
Score

10^/10

dcrat infostealer rat
- DcRat
  DarkCrystal(DC) is a new .NET RAT active since June 2019 capable of loading additional plugins.
  rat infostealer dcrat
- DC Rat Payload
  Detects payload of DCRat, commonly dropped by NSIS installers.
  rat
- Executes dropped EXE
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

dcratinfostealerrat

© 2018-2024

Terms | Privacy