General
-
Target
aff9e3ee939d89333ab2152b97ca2b1e.bin
-
Size
369KB
-
Sample
230522-b1vvcagb9x
-
MD5
599d50faea884aecdf5206db4096801b
-
SHA1
9ba75b3f23bb5f7cf0765031adf498fe5f82f8dc
-
SHA256
1bee6f1e2c2e5a704a57f3b5593bb45ed3af4bce3622540d1adc3d178ea5900b
-
SHA512
353e69cc50450a6543a93a3c4498db12f7b6e5c05d5f3986c9e79719c3e4f8882adf5ef231771d5a1f9f546f717236d9d8558a143062bf42934c107db69675e3
-
SSDEEP
6144:zw52cOzw58ssMoGklruScFyqcxicXuNj+PWVfS5dihKSYfCc0sYiFu9HV:z0DmsiGqubJIu4WVSTi8ld/LCV
Behavioral task
behavioral1
Sample
f04597b19822f7ba1e178240ec20c4b024bf7b889cb922d3bd38cec8539b3d05.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
f04597b19822f7ba1e178240ec20c4b024bf7b889cb922d3bd38cec8539b3d05.exe
Resource
win10v2004-20230220-en
Malware Config
Targets
-
-
Target
f04597b19822f7ba1e178240ec20c4b024bf7b889cb922d3bd38cec8539b3d05.exe
-
Size
807KB
-
MD5
aff9e3ee939d89333ab2152b97ca2b1e
-
SHA1
c1bdfbdb86c21eb7fa2bf44c4f63eb1149aabc1e
-
SHA256
f04597b19822f7ba1e178240ec20c4b024bf7b889cb922d3bd38cec8539b3d05
-
SHA512
36318529ffca0040965cfe63ca2e622e1207ed96faa809497bec37e8404d4a27f9e62ecc104b71f986171c4a99f3b0c581d9a5138b13f8b2dc8ec9e4b3e27bba
-
SSDEEP
12288:z/NE54xRsSenAllJmIertdFR68/fBVpsAZiWH68bgBsZp+83CvQa7pBBDft4qaBi:z/NrqAllrertLPpscGVSN3CzTGw
Score10/10-
DcRat
DarkCrystal(DC) is a new .NET RAT active since June 2019 capable of loading additional plugins.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-