dcrat | 278b30b6a9c6ffba21a71c5cad9f4b64d383b868e79098be97a5b92cb57e6667 | Triage

Submit
Reports

Overview

overview

Static

static

Loader.exe

windows7-x64

Loader.exe

windows10-2004-x64

Sharing

General

Target

Loader.exe
Size

2.0MB
Sample

230121-xn7h9sfc4s
MD5

f763d6937405d921474f3996910dc816
SHA1

e81cd22b8e4a361c20c926d2aecdbe231274a656
SHA256

278b30b6a9c6ffba21a71c5cad9f4b64d383b868e79098be97a5b92cb57e6667
SHA512

c0dd64b26c1ce01336690b9c9ed90bcfbab07f61d94a04ce4be5965e5b59f0d31c48760b08ac0a4654f8569ab9dbf66b5568300d3a5e34c5c3dd62ddc07b5bfc
SSDEEP

49152:Ub9F/IKSPFHC6AGjAfqeOg/sFGSYxXNPEYLi2TZCYclIcM:Ub7IFPFHXX+xdPdDTZCJac

Score

10^/10

dcrat infostealer rat

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

Loader.exe

Resource

win7-20221111-en

dcrat infostealer rat

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

Loader.exe

Resource

win10v2004-20221111-en

dcrat infostealer rat

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  Loader.exe
- Size
  
  2.0MB
- MD5
  
  f763d6937405d921474f3996910dc816
- SHA1
  
  e81cd22b8e4a361c20c926d2aecdbe231274a656
- SHA256
  
  278b30b6a9c6ffba21a71c5cad9f4b64d383b868e79098be97a5b92cb57e6667
- SHA512
  
  c0dd64b26c1ce01336690b9c9ed90bcfbab07f61d94a04ce4be5965e5b59f0d31c48760b08ac0a4654f8569ab9dbf66b5568300d3a5e34c5c3dd62ddc07b5bfc
- SSDEEP
  
  49152:Ub9F/IKSPFHC6AGjAfqeOg/sFGSYxXNPEYLi2TZCYclIcM:Ub7IFPFHXX+xdPdDTZCJac
Score

10^/10

dcrat infostealer rat
- DcRat
  DarkCrystal(DC) is a new .NET RAT active since June 2019 capable of loading additional plugins.
  rat infostealer dcrat
- DCRat payload
  Detects payload of DCRat, commonly dropped by NSIS installers.
  rat
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

dcratinfostealerrat

behavioral2

dcratinfostealerrat

© 2018-2024

Terms | Privacy