Overview

overview

10

Static

static

zdnDE6F.tmp.dll

windows7_x64

10

zdnDE6F.tmp.dll

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    zdnDE6F.tmp

  • Size

    1.3MB

  • Sample

    210716-f6dswf7vhe

  • MD5

    108b97c82934dd23e8d7cd9534ad2685

  • SHA1

    991d8933b8afe85c743321050c63c34dad9eb69a

  • SHA256

    e5645c71f642f457348025cca404a3e756f91b0ae418cebae622935cea1707f6

  • SHA512

    0e902f5e0a34326e14d1df413265fa3057094091897b4e3c3e7e34eec511cfbdf9d99b4a9c1efc537f0ea977c0bcc38683fff9cbb4acb6a25e680c9c0931e0fc

Score
10/10
darkvncrat

Malware Config

Targets

    • Target

      zdnDE6F.tmp

    • Size

      1.3MB

    • MD5

      108b97c82934dd23e8d7cd9534ad2685

    • SHA1

      991d8933b8afe85c743321050c63c34dad9eb69a

    • SHA256

      e5645c71f642f457348025cca404a3e756f91b0ae418cebae622935cea1707f6

    • SHA512

      0e902f5e0a34326e14d1df413265fa3057094091897b4e3c3e7e34eec511cfbdf9d99b4a9c1efc537f0ea977c0bcc38683fff9cbb4acb6a25e680c9c0931e0fc

    Score
    10/10
    darkvncrat

    • DarkVNC

      DarkVNC is a malicious version of the famous VNC software.

      ratdarkvnc

    • DarkVNC Payload

      rat

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks