darkcloud | 3116fd6a924c1f827b67fbf721d6be3ba1ac8a71da15a6dff5548cfce2231650 | Triage

Submit
Reports

Overview

overview

Static

static

5

file532024.exe

windows11-21h2-x64

Sharing

General

Target

file532024.exe
Size

1.3MB
Sample

240508-k8hpesfg76
MD5

99332016403c66ac129b2ab34e97b0ed
SHA1

37c0df4ea5fa74972be7619094081dc726cbf665
SHA256

3116fd6a924c1f827b67fbf721d6be3ba1ac8a71da15a6dff5548cfce2231650
SHA512

351e06565a3e2f8e227dc8f404c5e368553643540f0f9349d780e0973f89be95b1cb286498b42c2851bdc2094032554268d50b0f165548704ef6ecacbb5da00e
SSDEEP

24576:9qDEvCTbMWu7rQYlBQcBiT6rprG8ahcfv9A/tFBNHmRJ8QTDRal/D:9TvC/MTQYxsWR7ahcfv9A/7BN+y+i/

Score

10^/10

darkcloud stealer

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

file532024.exe

Resource

win11-20240426-en

darkcloud stealer

windows11-21h2-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

darkcloud

Attributes

email_from
[email protected]
email_to
[email protected]

Targets

- Target
  
  file532024.exe
- Size
  
  1.3MB
- MD5
  
  99332016403c66ac129b2ab34e97b0ed
- SHA1
  
  37c0df4ea5fa74972be7619094081dc726cbf665
- SHA256
  
  3116fd6a924c1f827b67fbf721d6be3ba1ac8a71da15a6dff5548cfce2231650
- SHA512
  
  351e06565a3e2f8e227dc8f404c5e368553643540f0f9349d780e0973f89be95b1cb286498b42c2851bdc2094032554268d50b0f165548704ef6ecacbb5da00e
- SSDEEP
  
  24576:9qDEvCTbMWu7rQYlBQcBiT6rprG8ahcfv9A/tFBNHmRJ8QTDRal/D:9TvC/MTQYxsWR7ahcfv9A/7BN+y+i/
Score

10^/10

darkcloud stealer
- DarkCloud
  An information stealer written in Visual Basic.
  stealer darkcloud
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

darkcloudstealer

© 2018-2024

Terms | Privacy