General
-
Target
7621dbdc11c6f2fdea431fac80215326c1452bba3b9e62e3265fe684458a3afc
-
Size
1.5MB
-
Sample
200624-fckw51qtmx
-
MD5
1bbac4ba77d96322e66cfeee92d7b8e4
-
SHA1
15591ad38ac7d76b0920773e2bf8ac695b704cf5
-
SHA256
7621dbdc11c6f2fdea431fac80215326c1452bba3b9e62e3265fe684458a3afc
-
SHA512
522ccd68d80e2bdc2fb6775f54cbfdf92a706a10b64a35e103538fa3bc907b6e232915e64597a058caf72c6001ae19b90eb71fae67607990721bf2b5d23e618e
Static task
static1
Behavioral task
behavioral1
Sample
7621dbdc11c6f2fdea431fac80215326c1452bba3b9e62e3265fe684458a3afc.exe
Resource
win7
Malware Config
Extracted
darkcomet
Runescape
mrsnickers03.no-ip.biz:340
DC_MUTEX-6ZFK11A
-
gencode
uNwew4gojxtu
-
install
false
-
offline_keylogger
true
-
persistence
false
Targets
-
-
Target
7621dbdc11c6f2fdea431fac80215326c1452bba3b9e62e3265fe684458a3afc
-
Size
1.5MB
-
MD5
1bbac4ba77d96322e66cfeee92d7b8e4
-
SHA1
15591ad38ac7d76b0920773e2bf8ac695b704cf5
-
SHA256
7621dbdc11c6f2fdea431fac80215326c1452bba3b9e62e3265fe684458a3afc
-
SHA512
522ccd68d80e2bdc2fb6775f54cbfdf92a706a10b64a35e103538fa3bc907b6e232915e64597a058caf72c6001ae19b90eb71fae67607990721bf2b5d23e618e
-
Executes dropped EXE
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-