General
-
Target
d2bbd75bfc9a75f864ffcae530f8a791cd24a06208765190ae674a6038c05590
-
Size
1.5MB
-
Sample
201109-5885afnx76
-
MD5
2060cf6432b646182580e06af0a94b86
-
SHA1
971ae2293c426fbd7ed0808e7ba5de2c2f461cde
-
SHA256
d2bbd75bfc9a75f864ffcae530f8a791cd24a06208765190ae674a6038c05590
-
SHA512
d063087f676452574a6e9e989fc8227fe8ec1ddac3da991802e16fb730b5fae174b92be04aba9a92d56ffb1449093097570a9d451a8c105bfd4360b9b89372a8
Static task
static1
Behavioral task
behavioral1
Sample
d2bbd75bfc9a75f864ffcae530f8a791cd24a06208765190ae674a6038c05590.exe
Resource
win7v20201028
Malware Config
Extracted
darkcomet
Runescape
mrsnickers03.no-ip.biz:340
DC_MUTEX-6ZFK11A
-
gencode
uNwew4gojxtu
-
install
false
-
offline_keylogger
true
-
persistence
false
Targets
-
-
Target
d2bbd75bfc9a75f864ffcae530f8a791cd24a06208765190ae674a6038c05590
-
Size
1.5MB
-
MD5
2060cf6432b646182580e06af0a94b86
-
SHA1
971ae2293c426fbd7ed0808e7ba5de2c2f461cde
-
SHA256
d2bbd75bfc9a75f864ffcae530f8a791cd24a06208765190ae674a6038c05590
-
SHA512
d063087f676452574a6e9e989fc8227fe8ec1ddac3da991802e16fb730b5fae174b92be04aba9a92d56ffb1449093097570a9d451a8c105bfd4360b9b89372a8
-
Executes dropped EXE
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-