Overview

overview

10

Static

static

3

apdproxy.exe

windows10-1703-x64

10

apdproxy.exe

windows10-2004-x64

10

apdproxy.exe

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    files.cab

  • Size

    3.7MB

  • Sample

    240208-cv27xaaf7v

  • MD5

    b5a1995210150c6e9d362e967d83b590

  • SHA1

    f4642b8b5e125863cea56196b584cefa5861aebd

  • SHA256

    e0a36182df70d6af3289ea7c430874b8281db531c767beab5131f6726f5635a2

  • SHA512

    94ad3c4e539ef8cb50dfb81e4c1ca6ffeb3da18718c40a77b0c160354b7994896b54edc8ec94a552395d7fd529d95bc16e4e5baedd8c91a8fdb8777c85e00901

  • SSDEEP

    49152:4czdSZ4Yx87nxODZGMFLnd8q67DZQlXvAoxS1mvXpiIg7Wx:JBx7nxOtFjOq67DcO1mhz

Score
10/10
darkgatestealer

Malware Config

Targets

    • Target

      apdproxy.exe

    • Size

      62KB

    • MD5

      fc9e59fe8bc4fe05382cff5c8fc59de1

    • SHA1

      69423bc900644a910936d2c5828348d188e5d750

    • SHA256

      a16b93c374e77f98889d7ad7f38b2282dbc5a40511541b9105b1dcf9216c3cf3

    • SHA512

      1d34be70cd701b606873aaf6910ab7fa7a3c4a81e0398d9bdcf8e8aac3dd63ec888c478e45600bf7e34301bec231038e8dccb457e49db8b5ff1c0740b68d072c

    • SSDEEP

      768:oSGP0wWfldXbYnoHbzrzHKSi90hHVKIYl2PN+iTre/S/Mqnzh9SLiB+L8rhOFPC1:oSGPGSwPPH9Kq0qzXrElX

    Score
    10/10
    darkgatestealer

    • DarkGate

      DarkGate is an infostealer written in C++.

      stealerdarkgate

    • Detect DarkGate stealer

    • Executes dropped EXE

    behavioral1behavioral2behavioral3

MITRE ATT&CK Enterprise v15

Tasks