DarkMe
Description
(NSFOCUS) DarkMe is a Visual Basic spy Trojan. Its initial version appeared on September 25, 2021. Currently, it supports host information collection, screenshot, file manipulation, registry manipulation, cmd command execution, self-update, persistence and other functions.
Names
Name |
---|
DarkMe |
Category
Malware
Type
- Reconnaissance
- Backdoor
- Info stealer
Information
- https://nsfocusglobal.com/the-new-apt-group-darkcasino-and-the-global-surge-in-winrar-0-day-exploits/
- https://nsfocusglobal.com/operation-darkcasino-in-depth-analysis-of-attacks-by-apt-group-evilnum-part-2/
- https://www.trendmicro.com/en_us/research/24/b/cve202421412-water-hydra-targets-traders-with-windows-defender-s.html
Malpedia
Other Information
Uuid
f117995a-0828-4655-83e5-8b82715e622f
Last Card Change
2024-03-06