Loader

DarkGate

First seen: 2017-01 • Status: active

Currently Active Threat

DarkGate can steal your passwords, mine cryptocurrency, and let attackers control your computer.

Overview

DarkGate is a versatile malware that provides remote access and cryptocurrency mining.

Also Known As

DarkGate Loader

How It Spreads

  • Phishing
  • Microsoft Teams messages
  • Malicious ads

What It Does

  • Remote access
  • Cryptocurrency mining
  • Credential theft
  • Keylogging

Is your business exposed?

Target Platforms

Windows

Detection Tips

  • Monitor for Teams phishing
  • Detect cryptocurrency mining

MITRE ATT&CK Techniques

T1566, T1059, T1496

If You're Infected

  1. 1.

    Block suspicious Teams messages

Related Malware

Asyncrat, Remcos

Is your business exposed?

Check if your company data is circulating on the dark web

Free scan • No credit card required

Privacy PolicyYour Privacy Choices