Behavioral task
behavioral1
Sample
b02479bd2f3ff635c7379a62ca54e502.exe
Resource
win7v20201028
windows7_x64
0 signatures
0 seconds
General
-
Target
b02479bd2f3ff635c7379a62ca54e502
-
Size
658KB
-
MD5
b02479bd2f3ff635c7379a62ca54e502
-
SHA1
ab25e517492161e240093753a9fb41d8cca6aa98
-
SHA256
668b49adbd859ede384b13bfa1082ad5254df49d8841e39fcff375bf15e057ca
-
SHA512
6b767502a250ee86dbece2ea14dce930ead6b0fadf97431fbb8363bc046ef5528444f875ce9a18fde72c8a2d88271a095d559b43bd1301b397fa0f303641a312
Malware Config
Extracted
Family
darkcomet
Botnet
Guest16
C2
95.31.38.1:1604
lololoshka228.ddns.net:1604
Mutex
DC_MUTEX-QBCS1A4
Attributes
-
InstallPath
MSDCSC\msdcsc.exe
-
gencode
NNCa8eHTowkP
-
install
true
-
offline_keylogger
true
-
persistence
true
-
reg_key
MicroUpdate
Signatures
-
Darkcomet family
Files
-
b02479bd2f3ff635c7379a62ca54e502.exe windows x86