Extracted

• • Target

    31ae2a2367b4fc.msi

  • Size

    8.6MB

  • MD5

    37593bb56df9b3ad6c9c8b777a7265ad

  • SHA1

    ee06b5c4da2721323cfef688e48cf917c9f0edce

  • SHA256

    92ffa8c1f772ff5487bb29f1539148bd6893ab4abf1de7ed603f84cbc39deddb

  • SHA512

    f5e041d4ea406cf74fd43fec903ba98881d5762fffd8ee43a3a308a795eb0eeff093507b0b03f14497a5e30908fe5d5118c5a507ec10c78fc90c269f10ddfe2e

  • SSDEEP

    196608:IeS5hV9/S6WXbfXlTrn7HZ5AQX3AveLukj1w9SyqunTiE7vS+:IdhVs6WXjX9HZ5AQX32WDjyqumI

  Score

  10^/10

  darkgateuser_871236672discoverystealer

  • DarkGate

    DarkGate is an infostealer written in C++.

    stealerdarkgate

  • Executes dropped EXE

  • Loads dropped DLL

  • Modifies file permissions

    discovery

  • Enumerates connected drives

    Attempts to read the root path of hard drives other than the default C: drive.

  behavioral1behavioral2