General
-
Target
27032024_0025_drkgate_2603.bin
-
Size
452KB
-
Sample
240326-tw1txahb6x
-
MD5
a9e3f35e404ae681505001afce86b173
-
SHA1
a091dd3538d64cace85c017b60b047ebc3566c36
-
SHA256
6ed1b68de55791a6534ea96e721ff6a5662f2aefff471929d23638f854a80031
-
SHA512
3319df928307c8a8303f495edf399a1ef796426ee06a232d486e501cfb93460a439880396f849f41a125801af8e6700f70a0f049bde6cb6d88e6da062914d23c
-
SSDEEP
6144:tnqtNwXtF9sSDTIITlWoIqKIkg9IDXJi7usWkm/pbyoaNnW5Wva1EpkXy9/:otNyt3NTlNIqPkg9IDX+C3GW06EpkC9
Malware Config
Extracted
darkgate
admin888
withupdate.com
-
anti_analysis
true
-
anti_debug
false
-
anti_vm
true
-
c2_port
80
-
check_disk
false
-
check_ram
false
-
check_xeon
false
-
crypter_au3
false
-
crypter_dll
false
-
crypter_raw_stub
false
-
internal_mutex
VqunyHFY
-
minimum_disk
50
-
minimum_ram
4000
-
ping_interval
6
-
rootkit
false
-
startup_persistence
true
-
username
admin888
Targets
-
-
Target
27032024_0025_drkgate_2603.bin
-
Size
452KB
-
MD5
a9e3f35e404ae681505001afce86b173
-
SHA1
a091dd3538d64cace85c017b60b047ebc3566c36
-
SHA256
6ed1b68de55791a6534ea96e721ff6a5662f2aefff471929d23638f854a80031
-
SHA512
3319df928307c8a8303f495edf399a1ef796426ee06a232d486e501cfb93460a439880396f849f41a125801af8e6700f70a0f049bde6cb6d88e6da062914d23c
-
SSDEEP
6144:tnqtNwXtF9sSDTIITlWoIqKIkg9IDXJi7usWkm/pbyoaNnW5Wva1EpkXy9/:otNyt3NTlNIqPkg9IDX+C3GW06EpkC9
Score10/10-
DarkGate
DarkGate is an infostealer written in C++.
-
Detect DarkGate stealer
-