General

  • Target

    6922c8d97e6d60135a3c55302ce1eecf.bin

  • Size

    1.6MB

  • Sample

    240202-bqmqzsaea9

  • MD5

    76de2a701e0a2184b27a00358c47f58f

  • SHA1

    fbe756189791d3dd60cc26b45edc666ed98c52f1

  • SHA256

    47aecccad819fdcb66e2dbb6d426e57174c745b9ba7828ec8c675db0d154f60f

  • SHA512

    f487538cbbe2b96d752e7b5bbdeac3bc356d538bea3dccbfb49cc1a1fab9b7c62372f605439898ac9bfa7ecbdc04cbb374acea9255f0f867737e27c3e8763db9

  • SSDEEP

    49152:d3AMp8W0l9Cr67knwoz1OPi3xzI9x3YzvqHMAUcE0:++B+X4YPazInozk5d

Malware Config

Targets

    • Target

      de69281050c18627c8e75a3f4cdf933db77ace2a8dd13ef753f61ad6e0a405ad.msi

    • Size

      3.2MB

    • MD5

      6922c8d97e6d60135a3c55302ce1eecf

    • SHA1

      f3714edb96b5db59b392058292ed486dfd3d3629

    • SHA256

      de69281050c18627c8e75a3f4cdf933db77ace2a8dd13ef753f61ad6e0a405ad

    • SHA512

      2477b8432ffd9a0873608d978b30a8eea129d6180a18437a3a204c875ec2469e4eb0db2a6c52b6d2bb3e1881fcb0e1e29934d73608499694545cfdda5bf53494

    • SSDEEP

      49152:qpUPqczdMZnZajVw8XsmOL8ruQO7/rsGQNTRJD+jQW/XRaWEr1bCU:qpmBUZaZw8u8rJOjrsG2apKGU

    • DarkGate

      DarkGate is an infostealer written in C++.

    • Detect DarkGate stealer

    • Modifies file permissions

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks