General
-
Target
81be337ebb002a63ff0fff2c30060d91d9b07998e39b740a2763ab5d5cec831a
-
Size
1.5MB
-
Sample
220731-ejp5bagdej
-
MD5
0bdb26ca33bd21c9426be99b13227817
-
SHA1
c1db7ee7509179c95ba1fe81c1f438995b6d7dcb
-
SHA256
81be337ebb002a63ff0fff2c30060d91d9b07998e39b740a2763ab5d5cec831a
-
SHA512
a9260ac1f768db12f49aadfc719ea4bf6a71131f6a8e4da8d54be99ab429ce1ba2b660db965b7fac0c4ca32e33c575b15ae7fbe2e4699eb1bf08e1a9cf726ed8
Static task
static1
Behavioral task
behavioral1
Sample
81be337ebb002a63ff0fff2c30060d91d9b07998e39b740a2763ab5d5cec831a.exe
Resource
win7-20220715-en
Malware Config
Extracted
darkcomet
NEWPORT1
austin.mlbfan.org:2220
DC_MUTEX-T6TM293
-
gencode
gutLHsPCWP68
-
install
false
-
offline_keylogger
true
-
persistence
false
Targets
-
-
Target
81be337ebb002a63ff0fff2c30060d91d9b07998e39b740a2763ab5d5cec831a
-
Size
1.5MB
-
MD5
0bdb26ca33bd21c9426be99b13227817
-
SHA1
c1db7ee7509179c95ba1fe81c1f438995b6d7dcb
-
SHA256
81be337ebb002a63ff0fff2c30060d91d9b07998e39b740a2763ab5d5cec831a
-
SHA512
a9260ac1f768db12f49aadfc719ea4bf6a71131f6a8e4da8d54be99ab429ce1ba2b660db965b7fac0c4ca32e33c575b15ae7fbe2e4699eb1bf08e1a9cf726ed8
-
Suspicious use of SetThreadContext
-