General

  • Target

    ChromeSetup.exe

  • Size

    427KB

  • Sample

    230721-bvek6sbe87

  • MD5

    20a51dedbd30ec336ce3ffc30f39b74c

  • SHA1

    e89238da7825ec9a65cf692b9901fb1cdd063ec0

  • SHA256

    d66c7fb718c21fe101ad507db710e452fc5d3ec8a837030855998aa02dae5ae5

  • SHA512

    73c025cb40bfb83de7bf3d914414a806f4a57bd7ec6168ed4beb593f1c99254d373579110cb0448f2850974a0b0191f8fa217c2598182b9e63c99875dd1f5dce

  • SSDEEP

    12288:vYExWTC11mO31yYh42D7A0QHIQVtb7+qqKXV/lh:vYEU0V31R4O7AFJXxqKF/f

Score
10/10

Malware Config

Extracted

Family

darkcloud

Attributes

Targets

    • Target

      ChromeSetup.exe

    • Size

      427KB

    • MD5

      20a51dedbd30ec336ce3ffc30f39b74c

    • SHA1

      e89238da7825ec9a65cf692b9901fb1cdd063ec0

    • SHA256

      d66c7fb718c21fe101ad507db710e452fc5d3ec8a837030855998aa02dae5ae5

    • SHA512

      73c025cb40bfb83de7bf3d914414a806f4a57bd7ec6168ed4beb593f1c99254d373579110cb0448f2850974a0b0191f8fa217c2598182b9e63c99875dd1f5dce

    • SSDEEP

      12288:vYExWTC11mO31yYh42D7A0QHIQVtb7+qqKXV/lh:vYEU0V31R4O7AFJXxqKF/f

    Score
    10/10
    • DarkCloud

      An information stealer written in Visual Basic.

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks