General

  • Target

    NA_0802c13f11828457c8cd914c3_JC.exe

  • Size

    1005KB

  • Sample

    230725-rff4fscg98

  • MD5

    cb042c7e4846ae4285bbd1d700bd2c11

  • SHA1

    6059f7265731d3d797397804889beb5bfb7a48ff

  • SHA256

    0802c13f11828457c8cd914c34d00517fc2ddccfb9060f34d90d01c01db4e47e

  • SHA512

    7bd0f93ed6f14a841c98489753957d3ad64eedcb2fc27c80f76e24de1df607349a400cc0b819ee43847e18f5bd81a4faf92a2cbf1108bdf4b4117c2485f1a97d

  • SSDEEP

    24576:HFuHpEdNi+i4VsKrezc/e7VeySOQOGmM9M:H2CdNiHMVH/eBDy

Score
10/10

Malware Config

Extracted

Family

darkcloud

Attributes

Targets

    • Target

      NA_0802c13f11828457c8cd914c3_JC.exe

    • Size

      1005KB

    • MD5

      cb042c7e4846ae4285bbd1d700bd2c11

    • SHA1

      6059f7265731d3d797397804889beb5bfb7a48ff

    • SHA256

      0802c13f11828457c8cd914c34d00517fc2ddccfb9060f34d90d01c01db4e47e

    • SHA512

      7bd0f93ed6f14a841c98489753957d3ad64eedcb2fc27c80f76e24de1df607349a400cc0b819ee43847e18f5bd81a4faf92a2cbf1108bdf4b4117c2485f1a97d

    • SSDEEP

      24576:HFuHpEdNi+i4VsKrezc/e7VeySOQOGmM9M:H2CdNiHMVH/eBDy

    Score
    10/10
    • DarkCloud

      An information stealer written in Visual Basic.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks