dcrat | 8bed0227175fdad5e7f3c17003af481764230711f774b10af6b55d1ab58b25ec | Triage

Submit
Reports

Overview

overview

Static

static

libcrypto.exe

windows7-x64

libcrypto.exe

windows10-2004-x64

Sharing

General

Target

libcrypto.exe
Size

317KB
Sample

230130-cneg9seh7y
MD5

61ee39f5537e65720ec629a593809c02
SHA1

a3ce1a9970fdb69c5f4bde0ffa49ca4cbd0c69bd
SHA256

8bed0227175fdad5e7f3c17003af481764230711f774b10af6b55d1ab58b25ec
SHA512

2e3c1ae897060820b0d5734c2c74740c22f4d45426fd51917a37cef652917ad12efdda7f3f9352e983f6f029a0d739317630928b82f247d1bbb00685ce97f284
SSDEEP

6144:H3yyN3U5XMNNWmfb7DyiUwCyJvjmk65mLRFe+i5SHbrVwCqy:HnNE5XM/j7DFJvAmLRFQ5S/R

Score

10^/10

dcrat infostealer rat

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

libcrypto.exe

Resource

win7-20221111-en

dcrat infostealer rat

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

libcrypto.exe

Resource

win10v2004-20221111-en

dcrat infostealer rat

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  libcrypto.exe
- Size
  
  317KB
- MD5
  
  61ee39f5537e65720ec629a593809c02
- SHA1
  
  a3ce1a9970fdb69c5f4bde0ffa49ca4cbd0c69bd
- SHA256
  
  8bed0227175fdad5e7f3c17003af481764230711f774b10af6b55d1ab58b25ec
- SHA512
  
  2e3c1ae897060820b0d5734c2c74740c22f4d45426fd51917a37cef652917ad12efdda7f3f9352e983f6f029a0d739317630928b82f247d1bbb00685ce97f284
- SSDEEP
  
  6144:H3yyN3U5XMNNWmfb7DyiUwCyJvjmk65mLRFe+i5SHbrVwCqy:HnNE5XM/j7DFJvAmLRFQ5S/R
Score

10^/10

dcrat infostealer rat
- DcRat
  DarkCrystal(DC) is a new .NET RAT active since June 2019 capable of loading additional plugins.
  rat infostealer dcrat
- DCRat payload
  Detects payload of DCRat, commonly dropped by NSIS installers.
  rat
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

dcratinfostealerrat

behavioral2

dcratinfostealerrat

© 2018-2024

Terms | Privacy