General
-
Target
1daeb81d9c3201beb8ea848fd869fc80.exe
-
Size
807KB
-
Sample
230602-mq39hsbd5s
-
MD5
1daeb81d9c3201beb8ea848fd869fc80
-
SHA1
33aaf3d172952a169e97b4912506b08df3e01c75
-
SHA256
5d3511735bed246367c3fa97c21ce7bdc9ade8ce5212d4a40504ddc9a9330122
-
SHA512
1b998a59a2c4d746b270ba5fddd1c1000f457d627c2bef114ea6d116085004deffbfd83d0f50ad56bc1bc366b3647da2499357b704fc4a303e3bbc74f242c115
-
SSDEEP
24576:KUHKH42cH3Gz0BwDbu2fglQPvX+QZZUI1L3:KuKHGHWgIu+f+QD3
Static task
static1
Behavioral task
behavioral1
Sample
1daeb81d9c3201beb8ea848fd869fc80.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
1daeb81d9c3201beb8ea848fd869fc80.exe
Resource
win10v2004-20230220-en
Malware Config
Targets
-
-
Target
1daeb81d9c3201beb8ea848fd869fc80.exe
-
Size
807KB
-
MD5
1daeb81d9c3201beb8ea848fd869fc80
-
SHA1
33aaf3d172952a169e97b4912506b08df3e01c75
-
SHA256
5d3511735bed246367c3fa97c21ce7bdc9ade8ce5212d4a40504ddc9a9330122
-
SHA512
1b998a59a2c4d746b270ba5fddd1c1000f457d627c2bef114ea6d116085004deffbfd83d0f50ad56bc1bc366b3647da2499357b704fc4a303e3bbc74f242c115
-
SSDEEP
24576:KUHKH42cH3Gz0BwDbu2fglQPvX+QZZUI1L3:KuKHGHWgIu+f+QD3
Score10/10-
DcRat
DarkCrystal(DC) is a new .NET RAT active since June 2019 capable of loading additional plugins.
-
Suspicious use of SetThreadContext
-