darkgate | 4196-131-0x00000000049D0000-0x0000000004D93000-memory[.]dmp | Triage

Submit
Reports

Overview

overview

Static

static

Sharing

Copy URL Twitter E-mail

Static task

static1

usr_871663321 darkgate

1 signatures

General

Target

4196-131-0x00000000049D0000-0x0000000004D93000-memory.dmp
Size

3.8MB
MD5

b309fb5fda1dedf3134fde726610b489
SHA1

9cd026dc41bfe3d5468ac344b37b8bd46f9a7838
SHA256

8baf7873bb2768e4a37d84a0813a8ba4d37d21bb9c6cbed38c2c0a8c28219a77
SHA512

a8a2d093d1255c19a0f774d75b6233c8d99d710f05cc36f4309ce1a85b5cf428ee60d22dd4ff96ab9491904f9912533c4078c3f7aeab2adfa1f0009397ab7de8
SSDEEP

12288:8d6yxyWWHHqetkDCjpaesSgCYg4JVjb9czrwsUqnut/hJC:u65WWnqlDCjpHBgCYT/v9cHwsU+uFL

Score

10^/10

usr_871663321 darkgate

Malware Config

Extracted

Family

darkgate

Botnet

usr_871663321

C2

http://greadeaoptimalle.com

Attributes

alternative_c2_port
443
anti_analysis
true
anti_debug
true
anti_vm
true
c2_port
2351
check_disk
true
check_ram
true
check_xeon
true
crypter_au3
true
crypter_dll
false
crypter_rawstub
false
crypto_key
ydRJJaNjgOUdLb
internal_mutex
txtMut
minimum_disk
40
minimum_ram
4096
ping_interval
4
rootkit
true
startup_persistence
true
username
usr_871663321

Signatures

Darkgate family
darkgate

Files

4196-131-0x00000000049D0000-0x0000000004D93000-memory.dmp

© 2018-2025

Terms | Privacy