darkcomet | e4b070ce400d13cfde785f6d4f245eed27ece658ac36767ca62ab2d56db12d5b | Triage

Sharing

General

Target

e4b070ce400d13cfde785f6d4f245eed27ece658ac36767ca62ab2d56db12d5b
Size

659KB
Sample

220516-x2v3dsdbe9
MD5

d079d9b6f82f4c49868f3fc890e4e757
SHA1

afe4fd8948830b94d1d8970ce498475ae757023f
SHA256

e4b070ce400d13cfde785f6d4f245eed27ece658ac36767ca62ab2d56db12d5b
SHA512

220a4156702200156f5639f4f0d344d29c43d249198c624ca773c4203ed14cd86e3125dc92f479a776b9b75efdeb1b89888c40217f07089fa3e80363488495fc

Score

10^/10

darkcomet sazan

Malware Config

Extracted

Family

darkcomet

Botnet

Sazan

C2

127.0.0.1:1604

Mutex

DC_MUTEX-1V56R4Y

Attributes

InstallPath
MSDCSC\msdcsc.exe
gencode
yCRXTBNPSH9p
install
true
offline_keylogger
true
persistence
true
reg_key
MicroUpdate

Targets

- Target
  
  e4b070ce400d13cfde785f6d4f245eed27ece658ac36767ca62ab2d56db12d5b
- Size
  
  659KB
- MD5
  
  d079d9b6f82f4c49868f3fc890e4e757
- SHA1
  
  afe4fd8948830b94d1d8970ce498475ae757023f
- SHA256
  
  e4b070ce400d13cfde785f6d4f245eed27ece658ac36767ca62ab2d56db12d5b
- SHA512
  
  220a4156702200156f5639f4f0d344d29c43d249198c624ca773c4203ed14cd86e3125dc92f479a776b9b75efdeb1b89888c40217f07089fa3e80363488495fc
Score

N/A
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2