darkcomet | 898a30c3c49792d0bd00ce73437903a66782eedb1130e1514427090360a29c18 | Triage

Sharing

General

Target

4f935b6e53f0fbb081b586fae27ef5be
Size

658KB
Sample

201214-qf71wj5jcx
MD5

4f935b6e53f0fbb081b586fae27ef5be
SHA1

266ee6b111f4e569513b29964f895e8791387027
SHA256

898a30c3c49792d0bd00ce73437903a66782eedb1130e1514427090360a29c18
SHA512

8903a3bdd461c6df8377d47e6cb11ef8f8e75dcf4fa07c1a64bfe1b2c5088b811b32e9b6f9548573de0cc52c77ef691360be9bfc10f766808f63533fd3d56b1a

Score

10^/10

darkcomet sazan rat trojan

Malware Config

Extracted

Family

darkcomet

Botnet

Sazan

C2

heysenhacker.duckdns.org:1604

Mutex

DC_MUTEX-W7JMF2P

Attributes

gencode
i4GkHSh3Nf6t
install
false
offline_keylogger
true
persistence
false

Targets

- Target
  
  4f935b6e53f0fbb081b586fae27ef5be
- Size
  
  658KB
- MD5
  
  4f935b6e53f0fbb081b586fae27ef5be
- SHA1
  
  266ee6b111f4e569513b29964f895e8791387027
- SHA256
  
  898a30c3c49792d0bd00ce73437903a66782eedb1130e1514427090360a29c18
- SHA512
  
  8903a3bdd461c6df8377d47e6cb11ef8f8e75dcf4fa07c1a64bfe1b2c5088b811b32e9b6f9548573de0cc52c77ef691360be9bfc10f766808f63533fd3d56b1a
Score

10^/10

darkcomet rat trojan
- Darkcomet
  DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.
  trojan rat darkcomet
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

darkcometrattrojan

behavioral2

darkcometrattrojan