General
-
Target
9bc517bad059d0d52ca121e3d612f2283ee06a36f08f125f28f5f840c5365e9a
-
Size
658KB
-
Sample
220520-pwgntabgf7
-
MD5
a5695f82fa2ac0bf31ea53da35f48ff7
-
SHA1
347edf2679ad426c1ff9bb68fb984b79c067e171
-
SHA256
9bc517bad059d0d52ca121e3d612f2283ee06a36f08f125f28f5f840c5365e9a
-
SHA512
5ebe14d6b70f24b6fd383df22ce1472a0b11db3805203004146808c16ac765884f0d5d36747f7de5aaccf7be74fd0a69bd6a28feb50875af9800c50cf15a90f6
Behavioral task
behavioral1
Sample
9bc517bad059d0d52ca121e3d612f2283ee06a36f08f125f28f5f840c5365e9a.exe
Resource
win7-20220414-en
Malware Config
Extracted
darkcomet
Sazan
127.0.0.1:1604
DC_MUTEX-X3JX9H5
-
gencode
mHEqoDGuKrg1
-
install
false
-
offline_keylogger
true
-
persistence
false
Targets
-
-
Target
9bc517bad059d0d52ca121e3d612f2283ee06a36f08f125f28f5f840c5365e9a
-
Size
658KB
-
MD5
a5695f82fa2ac0bf31ea53da35f48ff7
-
SHA1
347edf2679ad426c1ff9bb68fb984b79c067e171
-
SHA256
9bc517bad059d0d52ca121e3d612f2283ee06a36f08f125f28f5f840c5365e9a
-
SHA512
5ebe14d6b70f24b6fd383df22ce1472a0b11db3805203004146808c16ac765884f0d5d36747f7de5aaccf7be74fd0a69bd6a28feb50875af9800c50cf15a90f6
-
Suspicious use of SetThreadContext
-