General
-
Target
a26bba4bbd4fb44a01f7ef62499c38031a11a4609b3aa3d2af93d7e2f264d27c
-
Size
869KB
-
Sample
221001-2bnmvabcbm
-
MD5
78dd32ed5994259933ea73aa288a8cb0
-
SHA1
cce677fd39f4de39b94330991c51c7cc2c305fcc
-
SHA256
a26bba4bbd4fb44a01f7ef62499c38031a11a4609b3aa3d2af93d7e2f264d27c
-
SHA512
723dc66b92571a3658019b2ce013ab6a0d66e94fe0ff5a310060f8c359f413113e1faf9ef4da8206b2dc78c030cd77488f463a3f3536a09db2273ac7e5f50518
-
SSDEEP
12288:Sr6XkQawWwBcMM2zUUBwP6Dc9+zKa/I71ytZIcq+71GhJ8YwUgnrCjJbnV:SWXkQ5cMMviDc9+O7paIcqzbyy
Malware Config
Extracted
darkcomet
Guest16
flix4u.3utilities.com:1604
DC_MUTEX-6FSSTJ2
-
gencode
VTBvSXJLwSoT
-
install
false
-
offline_keylogger
true
-
persistence
false
Targets
-
-
Target
a26bba4bbd4fb44a01f7ef62499c38031a11a4609b3aa3d2af93d7e2f264d27c
-
Size
869KB
-
MD5
78dd32ed5994259933ea73aa288a8cb0
-
SHA1
cce677fd39f4de39b94330991c51c7cc2c305fcc
-
SHA256
a26bba4bbd4fb44a01f7ef62499c38031a11a4609b3aa3d2af93d7e2f264d27c
-
SHA512
723dc66b92571a3658019b2ce013ab6a0d66e94fe0ff5a310060f8c359f413113e1faf9ef4da8206b2dc78c030cd77488f463a3f3536a09db2273ac7e5f50518
-
SSDEEP
12288:Sr6XkQawWwBcMM2zUUBwP6Dc9+zKa/I71ytZIcq+71GhJ8YwUgnrCjJbnV:SWXkQ5cMMviDc9+O7paIcqzbyy
Score10/10-
Darkcomet
DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.
-
Windows security bypass
-
Windows security modification
-
Suspicious use of SetThreadContext
-