DCRat3

DCRat Dark Crystal RAT .NET 2018 Russia. Sell $30-100 on Telegram. The plugin is modular. geutqmon DGA C2.

Threat Profile
Type RAT
Programming LanguageC#/.NET
C2 ProtocolHTTPS
First Seen2018
Targets Kuresel
Purpose / Capabilities
  • Remote Access+Keylogger

C2 Servers 1

Address Port Protocol Status Action
geutqmonpmjthuux.ru
443 HTTPS INACTIVE

⚠ C2 addresses are shared solely for threat intelligence and defensive purposes. Unauthorized access to these addresses constitutes a criminal offense.

Research Reports (1)

High

DCRat -- sostener1.vbs İspanyolca VBS, geutqmonpmjthuux.Ru 16-Kar DGA Domain | Yüksek

DCRat 1MB sostener1.vbs Ispanyolca tutmak. geutqmonpmjthuux.Ru 16 karakter rastgele .Ru DGA C2.

Read Report →