darkcomet | 5dbb27cd13c736eb73ba6a2c9ee20f2a343c2328c1f0b9b921c5890b2ced07e3 | Triage

Sharing

General

Target

5dbb27cd13c736eb73ba6a2c9ee20f2a343c2328c1f0b9b921c5890b2ced07e3
Size

756KB
Sample

221001-3mp6gsddfl
MD5

626722a6c7e0b147ee1cbe476b0e7140
SHA1

55efef47d619a6ad0d4f44ba45c23eb1f58d1c59
SHA256

5dbb27cd13c736eb73ba6a2c9ee20f2a343c2328c1f0b9b921c5890b2ced07e3
SHA512

5a1df74520602063516530980aea9164ccc93eecb65c418c240bc04279768aaca156b1cbc1e07aba633d8fdbbb480adab0ebe8d5768befc1b71363b871f8a07e
SSDEEP

12288:t9HFJ9rJxRX1uVVjoaWSoynxdO1FVBaOiRZTERfIhNkNCCLo9Ek5C/hv:HZ1xuVVjfFoynPaVBUR8f+kN10EBB

Score

10^/10

darkcomet guest16 rat trojan

Malware Config

Extracted

Family

darkcomet

Botnet

Guest16

C2

127.0.0.1:1604

Mutex

DC_MUTEX-1KRNX4C

Attributes

gencode
C4xK89el64Gf
install
false
offline_keylogger
true
persistence
false

Targets

- Target
  
  5dbb27cd13c736eb73ba6a2c9ee20f2a343c2328c1f0b9b921c5890b2ced07e3
- Size
  
  756KB
- MD5
  
  626722a6c7e0b147ee1cbe476b0e7140
- SHA1
  
  55efef47d619a6ad0d4f44ba45c23eb1f58d1c59
- SHA256
  
  5dbb27cd13c736eb73ba6a2c9ee20f2a343c2328c1f0b9b921c5890b2ced07e3
- SHA512
  
  5a1df74520602063516530980aea9164ccc93eecb65c418c240bc04279768aaca156b1cbc1e07aba633d8fdbbb480adab0ebe8d5768befc1b71363b871f8a07e
- SSDEEP
  
  12288:t9HFJ9rJxRX1uVVjoaWSoynxdO1FVBaOiRZTERfIhNkNCCLo9Ek5C/hv:HZ1xuVVjfFoynPaVBUR8f+kN10EBB
Score

10^/10

darkcomet rat trojan
- Darkcomet
  DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.
  trojan rat darkcomet
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

guest16darkcomet

behavioral1

darkcometrattrojan

behavioral2

darkcometrattrojan