Overview

overview

10

Static

static

10

JaffaCakes...b9.exe

windows7-x64

10

JaffaCakes...b9.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_3ffbc18d398e3754719b8546eeaf73b9

  • Size

    911KB

  • Sample

    250106-26t34svjaj

  • MD5

    3ffbc18d398e3754719b8546eeaf73b9

  • SHA1

    e8bf6d7be37f5201106b943c4cfdc5077970afc7

  • SHA256

    4e2a6a635d17ed6ec63e30a53c03645488915ffa45ca5c309be5acdf72de2c70

  • SHA512

    6ea20bfa1bb31ec29134adbac6736b8b1559c3cc2600a617de8401480b941f17e8649f210dadd07052be93a7e68966e4354affd32f7cc3a5e60821a0754cb35e

  • SSDEEP

    12288:2VURM2L5m8UrpoeTgXS4mHUh+hqyDTIYwCBR4sHTHqpVlOqbAqn4:2VURrlm8Qqjtj+hqyD7wc4sCV0qbA+4

Score
10/10
dcratinfostealerrat

Malware Config

Targets

    • Target

      JaffaCakes118_3ffbc18d398e3754719b8546eeaf73b9

    • Size

      911KB

    • MD5

      3ffbc18d398e3754719b8546eeaf73b9

    • SHA1

      e8bf6d7be37f5201106b943c4cfdc5077970afc7

    • SHA256

      4e2a6a635d17ed6ec63e30a53c03645488915ffa45ca5c309be5acdf72de2c70

    • SHA512

      6ea20bfa1bb31ec29134adbac6736b8b1559c3cc2600a617de8401480b941f17e8649f210dadd07052be93a7e68966e4354affd32f7cc3a5e60821a0754cb35e

    • SSDEEP

      12288:2VURM2L5m8UrpoeTgXS4mHUh+hqyDTIYwCBR4sHTHqpVlOqbAqn4:2VURrlm8Qqjtj+hqyD7wc4sCV0qbA+4

    Score
    10/10
    dcratinfostealerrat

    • DcRat

      DarkCrystal(DC) is a new .NET RAT active since June 2019 capable of loading additional plugins.

      ratinfostealerdcrat

    • Dcrat family

      dcrat

    • DCRat payload

      Detects payload of DCRat, commonly dropped by NSIS installers.

      rat
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks