Overview

overview

10

Static

static

10

e041951b90...f7.exe

windows7-x64

10

e041951b90...f7.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e041951b9084d03b1685ed2fdea5587258b721c0c57940fea6167656bf2c69f7

  • Size

    2.0MB

  • Sample

    230111-p3mhmscc49

  • MD5

    182fd62fdf57aaf29a889c1b65c65a2d

  • SHA1

    bf4a705fb1a061590a50d4ce9e059c24c00b7a96

  • SHA256

    e041951b9084d03b1685ed2fdea5587258b721c0c57940fea6167656bf2c69f7

  • SHA512

    560028e45bb43279fb12e214683c021ca5e83d2f07419a9f68806a9dac47bc187cc62f3fdf82a53e1ec3724a2cd06be04759efec57a41895e50d061304fb4a37

  • SSDEEP

    49152:dndSiKG7Idc6Rm8sDJMSgkdEiVTpnjyv:dhURm8vSFVov

Score
10/10
dcratinfostealerrat

Malware Config

Targets

    • Target

      e041951b9084d03b1685ed2fdea5587258b721c0c57940fea6167656bf2c69f7

    • Size

      2.0MB

    • MD5

      182fd62fdf57aaf29a889c1b65c65a2d

    • SHA1

      bf4a705fb1a061590a50d4ce9e059c24c00b7a96

    • SHA256

      e041951b9084d03b1685ed2fdea5587258b721c0c57940fea6167656bf2c69f7

    • SHA512

      560028e45bb43279fb12e214683c021ca5e83d2f07419a9f68806a9dac47bc187cc62f3fdf82a53e1ec3724a2cd06be04759efec57a41895e50d061304fb4a37

    • SSDEEP

      49152:dndSiKG7Idc6Rm8sDJMSgkdEiVTpnjyv:dhURm8vSFVov

    Score
    10/10
    dcratinfostealerrat

    • DcRat

      DarkCrystal(DC) is a new .NET RAT active since June 2019 capable of loading additional plugins.

      ratinfostealerdcrat

    • DCRat payload

      Detects payload of DCRat, commonly dropped by NSIS installers.

      rat
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks