Overview

overview

10

Static

static

10

973dbf2fa1...9e.exe

windows7-x64

10

973dbf2fa1...9e.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    973dbf2fa1bed7c6e1b99f1fd8699d782ef3aa379935617d3cb594fcc3c14d9e

  • Size

    2.0MB

  • Sample

    241220-engzhayphx

  • MD5

    72055e1bbfa1d4240e4aabc497729dee

  • SHA1

    0d3d54c8f46adf7ddb37bb6550bc3955f222476b

  • SHA256

    973dbf2fa1bed7c6e1b99f1fd8699d782ef3aa379935617d3cb594fcc3c14d9e

  • SHA512

    1e5cbfb2bf838bb08807c4c62bcf065cf6954b5bbd308f98546cbdfd29e65732d6b75f6819aab4f879019b0068833b86d4915aa1bee296cd4885a22f3143c7a9

  • SSDEEP

    49152:pQOavWHvEToeWC7ZdEWrsELqT/wcSNWbK1ah:pLTHvEToeWELTWwb

Score
10/10
dcratinfostealerrat

Malware Config

Targets

    • Target

      973dbf2fa1bed7c6e1b99f1fd8699d782ef3aa379935617d3cb594fcc3c14d9e

    • Size

      2.0MB

    • MD5

      72055e1bbfa1d4240e4aabc497729dee

    • SHA1

      0d3d54c8f46adf7ddb37bb6550bc3955f222476b

    • SHA256

      973dbf2fa1bed7c6e1b99f1fd8699d782ef3aa379935617d3cb594fcc3c14d9e

    • SHA512

      1e5cbfb2bf838bb08807c4c62bcf065cf6954b5bbd308f98546cbdfd29e65732d6b75f6819aab4f879019b0068833b86d4915aa1bee296cd4885a22f3143c7a9

    • SSDEEP

      49152:pQOavWHvEToeWC7ZdEWrsELqT/wcSNWbK1ah:pLTHvEToeWELTWwb

    Score
    10/10
    dcratinfostealerrat

    • DcRat

      DarkCrystal(DC) is a new .NET RAT active since June 2019 capable of loading additional plugins.

      ratinfostealerdcrat

    • Dcrat family

      dcrat

    • DCRat payload

      Detects payload of DCRat, commonly dropped by NSIS installers.

      rat
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks