darkcomet | 9c65873d914e0a8eba110bfbfae148d5364a0df022dcada7f08348282d85de5e | Triage

Sharing

General

Target

9c65873d914e0a8eba110bfbfae148d5364a0df022dcada7f08348282d85de5e
Size

283KB
Sample

220521-w69wnsbah2
MD5

260facf006699bb2d3da218207ff9a6a
SHA1

e005f0535c1ec9ec1fead918ded145a098b72557
SHA256

9c65873d914e0a8eba110bfbfae148d5364a0df022dcada7f08348282d85de5e
SHA512

00247822e47ab4c7ce16aae5e0fd265be1449891e361aa4a74f51b842be5224b8aaa41690ec8ce28ea2662cfddef43144ca0902bd2cef50e3f6f53365640dc40

Score

10^/10

darkcomet guest16 rat trojan upx

Malware Config

Extracted

Family

darkcomet

Botnet

Guest16

C2

93.159.238.186:1604

Mutex

DC_MUTEX-J495P4K

Attributes

gencode
fCCdHsRdbxrP
install
false
offline_keylogger
true
persistence
false

Targets

- Target
  
  9c65873d914e0a8eba110bfbfae148d5364a0df022dcada7f08348282d85de5e
- Size
  
  283KB
- MD5
  
  260facf006699bb2d3da218207ff9a6a
- SHA1
  
  e005f0535c1ec9ec1fead918ded145a098b72557
- SHA256
  
  9c65873d914e0a8eba110bfbfae148d5364a0df022dcada7f08348282d85de5e
- SHA512
  
  00247822e47ab4c7ce16aae5e0fd265be1449891e361aa4a74f51b842be5224b8aaa41690ec8ce28ea2662cfddef43144ca0902bd2cef50e3f6f53365640dc40
Score

10^/10

darkcomet rat trojan
- Darkcomet
  DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.
  trojan rat darkcomet
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

upxguest16darkcomet

behavioral1

darkcometrattrojan

behavioral2

darkcometrattrojan