d2f024ad19b8ada353f6459d3ac54529b045d4fadab880fcaa0813f4bfd617bc | Triage

Submit
Reports

Overview

overview

Static

static

DarkTrack+...px.exe

windows10-2004-x64

7

DarkTrack+...ta.exe

windows10-2004-x64

1

DarkTrack+...er.exe

windows10-2004-x64

1

DarkTrack+...eg.exe

windows10-2004-x64

1

DarkTrack+...e3.dll

windows10-2004-x64

7

out.dll

windows10-2004-x64

3

DarkTrack+...e3.dll

windows10-2004-x64

3

DarkTrack+...er.dll

windows10-2004-x64

7

out.dll

windows10-2004-x64

3

DarkTrack+...ub.exe

windows10-2004-x64

Analysis

max time kernel
144s
max time network
154s
platform
windows10-2004_x64
resource
win10v2004-20230221-en
resource tags

arch:x64arch:x86image:win10v2004-20230221-enlocale:en-usos:windows10-2004-x64system
submitted
07-04-2023 12:31

Sharing

Static task

static1

upx aspackv2 darktrack

5 signatures

Behavioral task

behavioral1

Sample

DarkTrack+Alien+4.1/DarkTrack Alien 4.1/Compressors/upx.exe

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

DarkTrack+Alien+4.1/DarkTrack Alien 4.1/Darktrack 4.1 Beta.exe

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

DarkTrack+Alien+4.1/DarkTrack Alien 4.1/Mescaline File Binder/Mescaline Multi File Binder.exe

Resource

win10v2004-20230221-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

DarkTrack+Alien+4.1/DarkTrack Alien 4.1/Modules/ffmpeg.exe

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

DarkTrack+Alien+4.1/DarkTrack Alien 4.1/Plugins/sqlite3.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral6

Sample

out.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral7

Sample

DarkTrack+Alien+4.1/DarkTrack Alien 4.1/sqlite3.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral8

Sample

DarkTrack+Alien+4.1/DarkTrack Alien 4.1/sqlite3Reader.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral9

Sample

out.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral10

Sample

DarkTrack+Alien+4.1/DarkTrack Alien 4.1/stub/stub.exe

Resource

win10v2004-20230221-en

darktrack rat stealer

windows10-2004-x64

3 signatures

150 seconds

Report Analysis Logs

General

Target

DarkTrack+Alien+4.1/DarkTrack Alien 4.1/Mescaline File Binder/Mescaline Multi File Binder.exe
Size

878KB
MD5

4580bc445dfad7d046e7440b1c179c33
SHA1

3c48788e35c4113ddc289747a699ec4691a37ba0
SHA256

80eb6c0204241543f26412c21af9b8d9bc89c20dc24f2d2efff4d674c9e6f350
SHA512

6c57117728986d89f59d404e169824dfe16047ddf8727da0c47e21062b60771b96401d23b667df0120b710b7679f6dd6e2b1215a96c02d93497769b18f88afad
SSDEEP

12288:+sDZtFKbuUoy5LCiE0XNIWP2xo7/nZ9kkeeENH2:1FKKDICiPXNBP1nEeK2

Score

1^/10

Malware Config

Signatures

Processes

C:\Users\Admin\AppData\Local\Temp\DarkTrack+Alien+4.1\DarkTrack Alien 4.1\Mescaline File Binder\Mescaline Multi File Binder.exe
"C:\Users\Admin\AppData\Local\Temp\DarkTrack+Alien+4.1\DarkTrack Alien 4.1\Mescaline File Binder\Mescaline Multi File Binder.exe"
1⤵
PID:3336

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/3336-133-0x0000000000400000-0x0000000000646000-memory.dmp

Filesize
2.3MB

Download
memory/3336-134-0x0000000000400000-0x0000000000646000-memory.dmp

Filesize
2.3MB

Download
memory/3336-135-0x0000000000400000-0x0000000000646000-memory.dmp

Filesize
2.3MB

Download
memory/3336-136-0x0000000000400000-0x0000000000646000-memory.dmp

Filesize
2.3MB

Download
memory/3336-137-0x0000000002410000-0x0000000002411000-memory.dmp

Filesize
4KB

Download
memory/3336-138-0x0000000000400000-0x0000000000646000-memory.dmp

Filesize
2.3MB

Download

© 2018-2024

Terms | Privacy