darkvnc | 5725f38e2426e2992bba27abb7c17e3618c77e3ab994b726e138280e2bd99797 | Triage

Submit
Reports

Overview

overview

Static

static

9

5725f38e24...97.exe

windows7_x64

5725f38e24...97.exe

windows10-2004_x64

Sharing

General

Target

5725f38e2426e2992bba27abb7c17e3618c77e3ab994b726e138280e2bd99797
Size

575KB
Sample

220328-x7mm7sead5
MD5

1088a3707a9424caff2f89182715566a
SHA1

03c3a9f9fa10fa7579435303f84ea040485eeb14
SHA256

5725f38e2426e2992bba27abb7c17e3618c77e3ab994b726e138280e2bd99797
SHA512

754e253fd7d64a8304ab5041677ec5432c14ab00f1c1322ccf7770ffeb0b3127f62091184e77ed7852534a645454ab55263e7d598ea8c9651493650ad403aab4

Score

10^/10

darkvnc cryptone packer rat

Static task

static1

cryptone packer

Behavioral task

behavioral1

Sample

5725f38e2426e2992bba27abb7c17e3618c77e3ab994b726e138280e2bd99797.exe

Resource

win7-20220311-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

5725f38e2426e2992bba27abb7c17e3618c77e3ab994b726e138280e2bd99797.exe

Resource

win10v2004-en-20220113

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  5725f38e2426e2992bba27abb7c17e3618c77e3ab994b726e138280e2bd99797
- Size
  
  575KB
- MD5
  
  1088a3707a9424caff2f89182715566a
- SHA1
  
  03c3a9f9fa10fa7579435303f84ea040485eeb14
- SHA256
  
  5725f38e2426e2992bba27abb7c17e3618c77e3ab994b726e138280e2bd99797
- SHA512
  
  754e253fd7d64a8304ab5041677ec5432c14ab00f1c1322ccf7770ffeb0b3127f62091184e77ed7852534a645454ab55263e7d598ea8c9651493650ad403aab4
Score

10^/10

darkvnc rat
- DarkVNC
  DarkVNC is a malicious version of the famous VNC software.
  rat darkvnc
- DarkVNC Payload
  rat
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy