General
-
Target
02112023_2236_drkgate_fsg.bin
-
Size
405KB
-
Sample
231102-ryznhsdc3s
-
MD5
62255c7d052b38b10db3241e1397dc51
-
SHA1
aed5fd7cf4a512a1f8dfb85230c4f0ed870a002a
-
SHA256
69f4cf8206970e89f0387bc99b33270d8fc4539fdf786c57659e443b47237268
-
SHA512
819f0b841d0c8c073c046201133a960ff0ca6bc1a0087aa27c159a2ea060c8ba07e2ece25b39a731ce4775b091b5324060f7bd37d227aceb7ed3f1477a317bcb
-
SSDEEP
12288:xUTExWnLjH5XOLiVtikJ537m/DWwtdeH1czUT:xHxWLT5XOLiVtj5rm/awOV8UT
Malware Config
Extracted
darkgate
user_871236672
http://shsukadadyuikmmonk.com
-
alternative_c2_port
8080
-
anti_analysis
true
-
anti_debug
false
-
anti_vm
true
-
c2_port
2351
-
check_disk
true
-
check_ram
true
-
check_xeon
false
-
crypter_au3
false
-
crypter_dll
false
-
crypter_rawstub
true
-
crypto_key
kPNVJIWEwOcGPL
-
internal_mutex
txtMut
-
minimum_disk
50
-
minimum_ram
6001
-
ping_interval
4
-
rootkit
true
-
startup_persistence
true
-
username
user_871236672
Targets
-
-
Target
02112023_2236_drkgate_fsg.bin
-
Size
405KB
-
MD5
62255c7d052b38b10db3241e1397dc51
-
SHA1
aed5fd7cf4a512a1f8dfb85230c4f0ed870a002a
-
SHA256
69f4cf8206970e89f0387bc99b33270d8fc4539fdf786c57659e443b47237268
-
SHA512
819f0b841d0c8c073c046201133a960ff0ca6bc1a0087aa27c159a2ea060c8ba07e2ece25b39a731ce4775b091b5324060f7bd37d227aceb7ed3f1477a317bcb
-
SSDEEP
12288:xUTExWnLjH5XOLiVtikJ537m/DWwtdeH1czUT:xHxWLT5XOLiVtj5rm/awOV8UT
Score10/10-
DarkGate
DarkGate is an infostealer written in C++.
-