Overview

overview

10

Static

static

10

2024-04-25...ck.exe

windows7-x64

9

2024-04-25...ck.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-04-25_c228d4694f9f295b4ad770795ca155f3_darkgate_ransomlock

  • Size

    1.3MB

  • MD5

    c228d4694f9f295b4ad770795ca155f3

  • SHA1

    17d730fe4771748c39508f5c3d9bc5a268ad2a9f

  • SHA256

    7e9be7d057b9e9566d2c06d1893515fcd94062ea7c93ea81048486d444c86a40

  • SHA512

    0d9235280e5251ca07d31fbc456b37aa1a139420eb00fbff12cecd426d78cfaf8b95d604dfabc8ea0fea71a4ee1c960ffff4311a31d09746754bb88bd2ec88ec

  • SSDEEP

    24576:LwxPanDWDAxfy+t4g6cBLi2iYQOlbQTAIU:ExPpWTjPJplUTjU

Score
10/10

Malware Config

Signatures

  • Detects executables containing artifacts associated with disabling Widnows Defender 1 IoCs
  • Detects executables embedding registry key / value combination indicative of disabling Windows Defender features 1 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-04-25_c228d4694f9f295b4ad770795ca155f3_darkgate_ransomlock
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections