dcrat | f39e16190b3c97670dbd39c9ddada53857c38be6737d9f379b57d706292d5815 | Triage

Submit
Reports

Overview

overview

Static

static

3

67EFB62822...22.exe

windows7-x64

67EFB62822...22.exe

windows10-2004-x64

Sharing

General

Target

67EFB6282221428E7FF63B87DF2F6522.exe
Size

3.5MB
Sample

241222-r2eshs1mf1
MD5

67efb6282221428e7ff63b87df2f6522
SHA1

d358efb4f979b90c159b505d374f475253d04367
SHA256

f39e16190b3c97670dbd39c9ddada53857c38be6737d9f379b57d706292d5815
SHA512

00443a9f7dda6d9d75d5ad39a802d66e26acb1f2f619462befbe82ac12c9ab47b5d02c6a721dea552d1bc498976ac11b4a6452f5bcfc887392abde49ff6f96f2
SSDEEP

98304:wijoKCxGO1tnxHRMvCcxXue73F43f+YA:wi0KCxGO1tnVR+XV73u3WH

Score

10^/10

dcrat discovery infostealer rat

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

67EFB6282221428E7FF63B87DF2F6522.exe

Resource

win7-20240903-en

dcrat discovery infostealer rat

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

67EFB6282221428E7FF63B87DF2F6522.exe

Resource

win10v2004-20241007-en

dcrat discovery infostealer rat

windows10-2004-x64

13 signatures

150 seconds

Malware Config

Targets

- Target
  
  67EFB6282221428E7FF63B87DF2F6522.exe
- Size
  
  3.5MB
- MD5
  
  67efb6282221428e7ff63b87df2f6522
- SHA1
  
  d358efb4f979b90c159b505d374f475253d04367
- SHA256
  
  f39e16190b3c97670dbd39c9ddada53857c38be6737d9f379b57d706292d5815
- SHA512
  
  00443a9f7dda6d9d75d5ad39a802d66e26acb1f2f619462befbe82ac12c9ab47b5d02c6a721dea552d1bc498976ac11b4a6452f5bcfc887392abde49ff6f96f2
- SSDEEP
  
  98304:wijoKCxGO1tnxHRMvCcxXue73F43f+YA:wi0KCxGO1tnVR+XV73u3WH
Score

10^/10

dcrat discovery infostealer rat
- DcRat
  DarkCrystal(DC) is a new .NET RAT active since June 2019 capable of loading additional plugins.
  rat infostealer dcrat
- Dcrat family
  dcrat
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Remote System Discovery

System Information Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

dcratdiscoveryinfostealerrat

behavioral2

dcratdiscoveryinfostealerrat

© 2018-2025

Terms | Privacy