Overview

overview

10

Static

static

1

adac3ea10f...b2.exe

windows7-x64

10

adac3ea10f...b2.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    adac3ea10f4ed158473fe3680fc1efb2.exe

  • Size

    800KB

  • Sample

    230527-s2d2nacc37

  • MD5

    adac3ea10f4ed158473fe3680fc1efb2

  • SHA1

    08b6afa1523b959c8c1cbbfd4ad0188ed65956f9

  • SHA256

    21f916b721f00ac97997267dfb601165e5718f9253fcf7b07938575c531ccef0

  • SHA512

    e41344a67ab71dbe21f5a83a001f264925eea5ead065463d73b81d4ad9c865fd45c820e66536a91e8e2dcfd69393f222c6f81d68a8bed4067611f7a4d881ebad

  • SSDEEP

    24576:IK4Sbx1gpQxETtWMrNtKRxU+MBqBPMwsY:Ibm2pQabpQRa+MBqa

Score
10/10
dcratinfostealerrat

Malware Config

Targets

    • Target

      adac3ea10f4ed158473fe3680fc1efb2.exe

    • Size

      800KB

    • MD5

      adac3ea10f4ed158473fe3680fc1efb2

    • SHA1

      08b6afa1523b959c8c1cbbfd4ad0188ed65956f9

    • SHA256

      21f916b721f00ac97997267dfb601165e5718f9253fcf7b07938575c531ccef0

    • SHA512

      e41344a67ab71dbe21f5a83a001f264925eea5ead065463d73b81d4ad9c865fd45c820e66536a91e8e2dcfd69393f222c6f81d68a8bed4067611f7a4d881ebad

    • SSDEEP

      24576:IK4Sbx1gpQxETtWMrNtKRxU+MBqBPMwsY:Ibm2pQabpQRa+MBqa

    Score
    10/10
    dcratinfostealerrat

    • DcRat

      DarkCrystal(DC) is a new .NET RAT active since June 2019 capable of loading additional plugins.

      ratinfostealerdcrat

    • DCRat payload

      Detects payload of DCRat, commonly dropped by NSIS installers.

      rat

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks