darkvision | 0f08beb8660353d377f2ea2ff01264d8c64a7eeb01f29fe91711ab02ead13e47 | Triage

Submit
Reports

Overview

overview

Static

static

STUB.exe

windows7-x64

STUB.exe

windows10-2004-x64

Sharing

General

Target

STUB.EXE
Size

276KB
Sample

250101-fy28vsykgm
MD5

a5772b2f2d542f4b9c8b470ffc6dc8aa
SHA1

1b06cc73448b6ac1cbd9a65d3a7272f498f0d7d6
SHA256

0f08beb8660353d377f2ea2ff01264d8c64a7eeb01f29fe91711ab02ead13e47
SHA512

5e67d9cc0fda9f87d3b7ea0fd39d9d5130d3b2cd4f0c40a7b2aefe347c7b070f262bb43cb5477c26d01050fedaaa01c9cfa39c64ef3bdd18f6b892a7e8d8503e
SSDEEP

3072:rrDyh1bdjkWxF/1PVg88WRhgEr1yNhT2xE/3MW7o4+W95nBkBPV5Epr1R:uhhJDFgX3Er8PTAE/3JR52Va

Score

10^/10

darkvision rat

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

STUB.exe

Resource

win7-20240903-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

STUB.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Extracted

Family

darkvision

C2

147.185.221.24

Targets

- Target
  
  STUB.EXE
- Size
  
  276KB
- MD5
  
  a5772b2f2d542f4b9c8b470ffc6dc8aa
- SHA1
  
  1b06cc73448b6ac1cbd9a65d3a7272f498f0d7d6
- SHA256
  
  0f08beb8660353d377f2ea2ff01264d8c64a7eeb01f29fe91711ab02ead13e47
- SHA512
  
  5e67d9cc0fda9f87d3b7ea0fd39d9d5130d3b2cd4f0c40a7b2aefe347c7b070f262bb43cb5477c26d01050fedaaa01c9cfa39c64ef3bdd18f6b892a7e8d8503e
- SSDEEP
  
  3072:rrDyh1bdjkWxF/1PVg88WRhgEr1yNhT2xE/3MW7o4+W95nBkBPV5Epr1R:uhhJDFgX3Er8PTAE/3JR52Va
Score

10^/10

darkvision rat
- DarkVision Rat
  DarkVision Rat is a trojan written in C++.
  rat darkvision
- Darkvision family
  darkvision
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy