DcRat

DarkCrystal(DC) is a new .NET RAT active since June 2019 capable of loading additional plugins.

DCRat payload

Detects payload of DCRat, commonly dropped by NSIS installers.

Disables Task Manager via registry modification