Overview

overview

10

Static

static

10

b5154bba_h...My.exe

windows7_x64

10

b5154bba_h...My.exe

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b5154bba_hs6p8854My

  • Size

    658KB

  • MD5

    b5154bba3a9d3648b40164f2ec89e059

  • SHA1

    e37b5718f3da44132e2170dc85e026b9a998f5d9

  • SHA256

    d8b6d9bf469cf33b4effbfc8bcac272a66a01213184580a668a2517df93834a2

  • SHA512

    c21c3e0ed025e97b6dbc0bc9b3f9b8e87306df8177e1638892ecbcb2bf199e828bc186e0fb872dd82c7cd4d3bedb5ff2910584057d34709535a498ca612f5553

Score
10/10
sazandarkcomet

Malware Config

Extracted

Family

darkcomet

Botnet

Sazan

C2

0.tcp.ngrok.io:14691

Mutex

DC_MUTEX-DMS3MBM

Attributes
  • gencode

    nSh0hsPzKYNY

  • install

    false

  • offline_keylogger

    true

  • persistence

    false

Signatures

Files

  • b5154bba_hs6p8854My
    .exe windows x86