General
-
Target
[CRACKED BY L1nc0In] NEW DCRat.rar
-
Size
97.2MB
-
Sample
250325-g6svtswj13
-
MD5
7e51293bc2161cb1daf677e7c95f4811
-
SHA1
a228a7c2e2efd5abd891b8cfc0d33f3b536a36f3
-
SHA256
01cc2b1bca4a1a99bb6ae311ff222b788700913cb0ba765dbdee7f25160bf91a
-
SHA512
04bed232d385c16425e94782ecc55ea6a33e8c92b18859c4dcd7d4697c483c5b3f46c0835bd134a3cbf1da47d22197ce7cdc7a9c06b5e9e9c76dc8d4fd766163
-
SSDEEP
3145728:yEaICN96e3iUVcIEg2njK723B+CTfg8B1:yEaICr6ejSIEgeK75CTfg01
Malware Config
Targets
-
-
Target
[CRACKED BY L1nc0In] NEW DCRat.rar
-
Size
97.2MB
-
MD5
7e51293bc2161cb1daf677e7c95f4811
-
SHA1
a228a7c2e2efd5abd891b8cfc0d33f3b536a36f3
-
SHA256
01cc2b1bca4a1a99bb6ae311ff222b788700913cb0ba765dbdee7f25160bf91a
-
SHA512
04bed232d385c16425e94782ecc55ea6a33e8c92b18859c4dcd7d4697c483c5b3f46c0835bd134a3cbf1da47d22197ce7cdc7a9c06b5e9e9c76dc8d4fd766163
-
SSDEEP
3145728:yEaICN96e3iUVcIEg2njK723B+CTfg8B1:yEaICr6ejSIEgeK75CTfg01
Score8/10-
Drops file in Drivers directory
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops desktop.ini file(s)
-
Legitimate hosting services abused for malware hosting/C2
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-