General
-
Target
5eaf2714cc996f09d764d358bb6be88fe7eaf892d4cc04f85b3f022d0efb81e0
-
Size
1.3MB
-
Sample
220731-x89jcsedbm
-
MD5
41f3dbdd92071247b28fdb7e43b34bef
-
SHA1
1e1919d995f75098d0ee65b638e7bc90cca1039c
-
SHA256
5eaf2714cc996f09d764d358bb6be88fe7eaf892d4cc04f85b3f022d0efb81e0
-
SHA512
d550a440e361544a2cea4f2b8fa5ab930d5c95daa9005e817062dfb4c95dc4b0d4b57d71c1e46d564a3e5dbf0736b97fde751e0df4045e907c166ca912e7cbd9
Static task
static1
Behavioral task
behavioral1
Sample
5eaf2714cc996f09d764d358bb6be88fe7eaf892d4cc04f85b3f022d0efb81e0.exe
Resource
win7-20220718-en
Malware Config
Extracted
darkcomet
Guest16
109.20.230.130:1604
DC_MUTEX-N4XL9B6
-
gencode
m8Aeownffhl6
-
install
false
-
offline_keylogger
true
-
persistence
false
Targets
-
-
Target
5eaf2714cc996f09d764d358bb6be88fe7eaf892d4cc04f85b3f022d0efb81e0
-
Size
1.3MB
-
MD5
41f3dbdd92071247b28fdb7e43b34bef
-
SHA1
1e1919d995f75098d0ee65b638e7bc90cca1039c
-
SHA256
5eaf2714cc996f09d764d358bb6be88fe7eaf892d4cc04f85b3f022d0efb81e0
-
SHA512
d550a440e361544a2cea4f2b8fa5ab930d5c95daa9005e817062dfb4c95dc4b0d4b57d71c1e46d564a3e5dbf0736b97fde751e0df4045e907c166ca912e7cbd9
-
Suspicious use of SetThreadContext
-