Overview

overview

10

Static

static

3

Pago 20230...23.exe

windows7-x64

10

Pago 20230...23.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    Pago 202305160 023.exe

  • Size

    956KB

  • Sample

    230518-1v2s5sea35

  • MD5

    6046004cb062f773dc7972b5aaa1c5d6

  • SHA1

    de2d90f20422f7d75658c5bc652fafd5007659eb

  • SHA256

    e743084d25378307adb39573ea3f1dac734e8179215a962fc2b0d85b50c3db8f

  • SHA512

    5a7bfca675b25d9d126e05d003428d04d04a4f4d9e620a4829f27aaf739c6d58419e127268d307e41d752e5e165abddb103810ffd699e5560bbf8cf0b8523665

  • SSDEEP

    24576:eJZJEnXp4qACFa8qHsScPza+CrKqK14RdQ5PYc:efJEXpdACFa8xScGJJK1EQC

Score
10/10
darkcloudstealer

Malware Config

Extracted

Family

darkcloud

Attributes

Targets

    • Target

      Pago 202305160 023.exe

    • Size

      956KB

    • MD5

      6046004cb062f773dc7972b5aaa1c5d6

    • SHA1

      de2d90f20422f7d75658c5bc652fafd5007659eb

    • SHA256

      e743084d25378307adb39573ea3f1dac734e8179215a962fc2b0d85b50c3db8f

    • SHA512

      5a7bfca675b25d9d126e05d003428d04d04a4f4d9e620a4829f27aaf739c6d58419e127268d307e41d752e5e165abddb103810ffd699e5560bbf8cf0b8523665

    • SSDEEP

      24576:eJZJEnXp4qACFa8qHsScPza+CrKqK14RdQ5PYc:efJEXpdACFa8xScGJJK1EQC

    Score
    10/10
    darkcloudstealer

    • DarkCloud

      An information stealer written in Visual Basic.

      stealerdarkcloud

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks