General
-
Target
20102023_0214_drkgate_1910.bin
-
Size
409KB
-
Sample
231019-wvgezsbe66
-
MD5
d20bd75684f43f72a49c87f81975b5cd
-
SHA1
016015dddf8eba6b4e90ba7fb4425d497996d7d1
-
SHA256
bcacb9c1791dbbdb5179f73762cece9997ddc4c8f63899c06f88c384aecb20d9
-
SHA512
1c4ec190a9091ef1de708be1b03d52a76210c46a3db408bcc7fcae0e2c090af5753d9589933703494a1b83d707ad87eb7faf38fe74b10fbd29d746be9c9189aa
-
SSDEEP
6144:pfZk2/Zu30WbMAOozifhNay3p3yra20fSjNPJ5AOSdvdc:bkkZuEWzOozifhNarFjNBfiFc
Malware Config
Extracted
darkgate
user_871236672
http://projecktupdatemonk.com
-
alternative_c2_port
8080
-
anti_analysis
true
-
anti_debug
true
-
anti_vm
true
-
c2_port
2351
-
check_disk
true
-
check_ram
true
-
check_xeon
true
-
crypter_au3
false
-
crypter_dll
false
-
crypter_rawstub
true
-
crypto_key
AlzQrcpAObCSqG
-
internal_mutex
txtMut
-
minimum_disk
35
-
minimum_ram
6000
-
ping_interval
4
-
rootkit
true
-
startup_persistence
true
-
username
user_871236672
Targets
-
-
Target
20102023_0214_drkgate_1910.bin
-
Size
409KB
-
MD5
d20bd75684f43f72a49c87f81975b5cd
-
SHA1
016015dddf8eba6b4e90ba7fb4425d497996d7d1
-
SHA256
bcacb9c1791dbbdb5179f73762cece9997ddc4c8f63899c06f88c384aecb20d9
-
SHA512
1c4ec190a9091ef1de708be1b03d52a76210c46a3db408bcc7fcae0e2c090af5753d9589933703494a1b83d707ad87eb7faf38fe74b10fbd29d746be9c9189aa
-
SSDEEP
6144:pfZk2/Zu30WbMAOozifhNay3p3yra20fSjNPJ5AOSdvdc:bkkZuEWzOozifhNarFjNBfiFc
Score10/10-
DarkGate
DarkGate is an infostealer written in C++.
-