Overview

overview

10

Static

static

1

3ed9bc9487...48.msi

windows7-x64

10

3ed9bc9487...48.msi

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3ed9bc94879d6db3f296f8b948645a6ea9f9d4201d0209a71fbc62bf73e2e848.msi

  • Size

    3.9MB

  • Sample

    240221-drrgnsad5s

  • MD5

    54c2f6b177e71ec4c262930566a282d1

  • SHA1

    b39e90c76e1fb6e4dc6f2d4ed034ba7b9c82bf23

  • SHA256

    3ed9bc94879d6db3f296f8b948645a6ea9f9d4201d0209a71fbc62bf73e2e848

  • SHA512

    7b84d5784626707e808bc7a8e0b15fb23f7faf3dc77e3aa720a18e89e494c98850b1b6de52b25f43463e5a39aac2db1edebbd6c891976d89facd1f775cf16e43

  • SSDEEP

    49152:0pUPBhGczyqOSKGLcLxxYuYLRlJ7lzkiBVlR3/BzuAPeJx3B+JLil:0pUqM9LDEKXVuAPMuW

Score
10/10
darkgatediscoverystealer

Malware Config

Targets

    • Target

      3ed9bc94879d6db3f296f8b948645a6ea9f9d4201d0209a71fbc62bf73e2e848.msi

    • Size

      3.9MB

    • MD5

      54c2f6b177e71ec4c262930566a282d1

    • SHA1

      b39e90c76e1fb6e4dc6f2d4ed034ba7b9c82bf23

    • SHA256

      3ed9bc94879d6db3f296f8b948645a6ea9f9d4201d0209a71fbc62bf73e2e848

    • SHA512

      7b84d5784626707e808bc7a8e0b15fb23f7faf3dc77e3aa720a18e89e494c98850b1b6de52b25f43463e5a39aac2db1edebbd6c891976d89facd1f775cf16e43

    • SSDEEP

      49152:0pUPBhGczyqOSKGLcLxxYuYLRlJ7lzkiBVlR3/BzuAPeJx3B+JLil:0pUqM9LDEKXVuAPMuW

    Score
    10/10
    darkgatediscoverystealer

    • DarkGate

      DarkGate is an infostealer written in C++.

      stealerdarkgate

    • Detect DarkGate stealer

    • Modifies file permissions

      discovery

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks