General
-
Target
DCRat.exe
-
Size
6.9MB
-
Sample
240527-bkqwfsbh35
-
MD5
00d9d8efbbc40085276b347014d676cb
-
SHA1
2f170d5a165cb799ae6abca04995ac7a5f2db3ac
-
SHA256
dec093070d245723af3d5a631e72b6ff1303b4e1a862b6edc95915cf8f863f9d
-
SHA512
780cf48eeaafb2533ae49dc9515e33530b1a0c194da80275436ce5fd642b927e7e101c3fad9c4e0cc23ea30def9bd5c706252bff48d5c03e0a19e2d2aad80a89
-
SSDEEP
196608:aUI3ljBj/NBM6I059onJ5hrZEnyiU8AdZYJERurTb:qVjBj1iw9c5hlEXAdZYygr/
Behavioral task
behavioral1
Sample
DCRat.exe
Resource
win11-20240426-en
Malware Config
Targets
-
-
Target
DCRat.exe
-
Size
6.9MB
-
MD5
00d9d8efbbc40085276b347014d676cb
-
SHA1
2f170d5a165cb799ae6abca04995ac7a5f2db3ac
-
SHA256
dec093070d245723af3d5a631e72b6ff1303b4e1a862b6edc95915cf8f863f9d
-
SHA512
780cf48eeaafb2533ae49dc9515e33530b1a0c194da80275436ce5fd642b927e7e101c3fad9c4e0cc23ea30def9bd5c706252bff48d5c03e0a19e2d2aad80a89
-
SSDEEP
196608:aUI3ljBj/NBM6I059onJ5hrZEnyiU8AdZYJERurTb:qVjBj1iw9c5hlEXAdZYygr/
Score10/10-
DcRat
DarkCrystal(DC) is a new .NET RAT active since June 2019 capable of loading additional plugins.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies file permissions
-