Overview

overview

10

Static

static

3

injector.exe

windows7-x64

10

injector.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    injector.exe

  • Size

    759KB

  • Sample

    240224-27n89ahd3x

  • MD5

    cade10326d0e34723a90beca2ead0dca

  • SHA1

    33397952d143d97a5002b7fd2ba33e7905a90743

  • SHA256

    5c6408ee9865b3d814042cda1212b4a54f78f3101aabbbaf6a61d622c75cde82

  • SHA512

    a18a20fa641560702b26d0b678e2df557ff7d4b6e6ca2174e83d85afe23c4eec9912acf91377ecac974878b958a13b5b95e5f45b1042e9c5202fb2fc3b62981e

  • SSDEEP

    12288:to6Uu6KD3bnCA3t246nRZlVgbDw+ZTCE9dggeaVDJqkfapYDMgjnl2crVYxbZKJR:yi6KKA32/lV8nqTOw+pTh

Score
10/10
dcratinfostealerratspywarestealer

Malware Config

Targets

    • Target

      injector.exe

    • Size

      759KB

    • MD5

      cade10326d0e34723a90beca2ead0dca

    • SHA1

      33397952d143d97a5002b7fd2ba33e7905a90743

    • SHA256

      5c6408ee9865b3d814042cda1212b4a54f78f3101aabbbaf6a61d622c75cde82

    • SHA512

      a18a20fa641560702b26d0b678e2df557ff7d4b6e6ca2174e83d85afe23c4eec9912acf91377ecac974878b958a13b5b95e5f45b1042e9c5202fb2fc3b62981e

    • SSDEEP

      12288:to6Uu6KD3bnCA3t246nRZlVgbDw+ZTCE9dggeaVDJqkfapYDMgjnl2crVYxbZKJR:yi6KKA32/lV8nqTOw+pTh

    Score
    10/10
    dcratinfostealerratspywarestealer

    • DcRat

      DarkCrystal(DC) is a new .NET RAT active since June 2019 capable of loading additional plugins.

      ratinfostealerdcrat

    • DCRat payload

      Detects payload of DCRat, commonly dropped by NSIS installers.

      rat

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks