Overview

overview

10

Static

static

10

ff10a8686f...8N.exe

windows7-x64

10

ff10a8686f...8N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ff10a8686f000a107026bf58d56c5534e432ad7133f6dfb48c96552215612a18N.exe

  • Size

    2.0MB

  • Sample

    250120-vhkffazkez

  • MD5

    a66b3ee0cfb0281ec2b61546a98241d0

  • SHA1

    ad3a9b0f3fa1674ad800ec167ac29205abbaf1e2

  • SHA256

    ff10a8686f000a107026bf58d56c5534e432ad7133f6dfb48c96552215612a18

  • SHA512

    a28dbba44a658507d4fbae9a78c6e61e17f860064eb93705cb8b4b5834fe7e69e025bdb8fb9b56dbcd9c469d5e20dd7b629d82b988470a48a4e896900f7be421

  • SSDEEP

    49152:brYU+Yy4J8jao9UVlWAOjhRzsiYHjo++xTN:bdxVJC9UqRzsu+8N

Score
10/10
dcratinfostealerrat

Malware Config

Targets

    • Target

      ff10a8686f000a107026bf58d56c5534e432ad7133f6dfb48c96552215612a18N.exe

    • Size

      2.0MB

    • MD5

      a66b3ee0cfb0281ec2b61546a98241d0

    • SHA1

      ad3a9b0f3fa1674ad800ec167ac29205abbaf1e2

    • SHA256

      ff10a8686f000a107026bf58d56c5534e432ad7133f6dfb48c96552215612a18

    • SHA512

      a28dbba44a658507d4fbae9a78c6e61e17f860064eb93705cb8b4b5834fe7e69e025bdb8fb9b56dbcd9c469d5e20dd7b629d82b988470a48a4e896900f7be421

    • SSDEEP

      49152:brYU+Yy4J8jao9UVlWAOjhRzsiYHjo++xTN:bdxVJC9UqRzsu+8N

    Score
    10/10
    dcratinfostealerrat

    • DcRat

      DarkCrystal(DC) is a new .NET RAT active since June 2019 capable of loading additional plugins.

      ratinfostealerdcrat

    • Dcrat family

      dcrat

    • DCRat payload

      Detects payload of DCRat, commonly dropped by NSIS installers.

      rat
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks