darkcomet | 230351e5b4ee08a6583797d942967b059aec63c32eb26427f45d4ff64701b3fe | Triage

Submit
Reports

Overview

overview

Static

static

230351e5b4...fe.exe

windows10_x64

Sharing

General

Target

230351e5b4ee08a6583797d942967b059aec63c32eb26427f45d4ff64701b3fe.exe
Size

745KB
Sample

220710-p4t9wabecq
MD5

c0e4f49d4ea30fe8e04fdba223b44f24
SHA1

42d85163e18f35fd435b5f96a0bce10b8336b440
SHA256

230351e5b4ee08a6583797d942967b059aec63c32eb26427f45d4ff64701b3fe
SHA512

127923ce8310070ef1083b66f92ad5b7faeabb29f2540554fd833e6132d85478f55415344127760f04fe44a7ef8a0acd243d1dec5279510567a4a64777911abc

Score

10^/10

darkcomet evasion persistence rat trojan

Static task

static1

Behavioral task

behavioral1

Sample

230351e5b4ee08a6583797d942967b059aec63c32eb26427f45d4ff64701b3fe.exe

Resource

win10-20220414-en

darkcomet evasion persistence rat trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  230351e5b4ee08a6583797d942967b059aec63c32eb26427f45d4ff64701b3fe.exe
- Size
  
  745KB
- MD5
  
  c0e4f49d4ea30fe8e04fdba223b44f24
- SHA1
  
  42d85163e18f35fd435b5f96a0bce10b8336b440
- SHA256
  
  230351e5b4ee08a6583797d942967b059aec63c32eb26427f45d4ff64701b3fe
- SHA512
  
  127923ce8310070ef1083b66f92ad5b7faeabb29f2540554fd833e6132d85478f55415344127760f04fe44a7ef8a0acd243d1dec5279510567a4a64777911abc
Score

10^/10

darkcomet evasion persistence rat trojan
- Darkcomet
  DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.
  trojan rat darkcomet
- Modifies WinLogon for persistence
  persistence
- Executes dropped EXE
- Sets file to hidden
  Modifies file attributes to stop it showing in Explorer etc.
  evasion
- Adds Run key to start application
  persistence
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Winlogon Helper DLL

Hidden Files and Directories

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Hidden Files and Directories

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

darkcometevasionpersistencerattrojan

© 2018-2024

Terms | Privacy