darkcloud | 5d410f76644a3f4db20b4a5eb5116f57c482d2ea09b5f8a506009702ed5da351 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

9ef1c47ac7...f6.exe

windows7-x64

1

9ef1c47ac7...f6.exe

windows10-2004-x64

Sharing

General

Target

9145885c6226cbd9f18c472e4ac0a4e3.bin
Size

997KB
Sample

230130-xqcfxabg66
MD5

3d255a4eb8d51b2517dc33f6cc5f3233
SHA1

55c5fcabe50d3c8c04f5b31342e4c62183107e61
SHA256

5d410f76644a3f4db20b4a5eb5116f57c482d2ea09b5f8a506009702ed5da351
SHA512

60d556ab21a20f08cef1b2f307974d32def0629d99c297d03fcd678d8ffeee62a7b83dea77131f819d640429b049f61daa5d0b8a6d1aeb773d705efa36bed658
SSDEEP

24576:DWByrG6RlHGLeLfaWPiusZrA58Bf75qFDv65wcWJ:6BKG6jCeGWPiLPBA48

Score

10^/10

darkcloud stealer

Static task

static1

Behavioral task

behavioral1

Sample

9ef1c47ac7349f1f7c052ce54767a8fe0ff21f41b68e40261e41b351d3a1ddf6.exe

Resource

win7-20221111-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

9ef1c47ac7349f1f7c052ce54767a8fe0ff21f41b68e40261e41b351d3a1ddf6.exe

Resource

win10v2004-20220901-en

darkcloud stealer

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  9ef1c47ac7349f1f7c052ce54767a8fe0ff21f41b68e40261e41b351d3a1ddf6.exe
- Size
  
  1.1MB
- MD5
  
  9145885c6226cbd9f18c472e4ac0a4e3
- SHA1
  
  24fa80c373b83e0dffb87da409f1c312e0eaf5ff
- SHA256
  
  9ef1c47ac7349f1f7c052ce54767a8fe0ff21f41b68e40261e41b351d3a1ddf6
- SHA512
  
  c713028f419046dac9c1a85a39688f54a6f6692b475e29815617a8540340a304c1705138668880e6f0fa74c51debb278c33b0bb708a87798d4aa5a003cd66a5c
- SSDEEP
  
  24576:mPDJSb3ewHdqoXpDqDehBgLtQjC4qK3YDPIQSxFL:mPDJSb/qehyLy+4xIDPvSxFL
Score

10^/10

darkcloud stealer
- DarkCloud
  An information stealer written in Visual Basic.
  stealer darkcloud
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

darkcloudstealer

© 2018-2025

Terms | Privacy