Overview

overview

10

Static

static

e9e8f3acff...a2.exe

windows7-x64

10

e9e8f3acff...a2.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e9e8f3acffc062768c8412f23c68bec888a74f4e5239f33e250bb314f531e3a2

  • Size

    1.1MB

  • Sample

    221002-n3p34afdcr

  • MD5

    78dc6b183c2066310450e2bf47e5b506

  • SHA1

    130020dd49410b85c30ead8894d97243e318d2aa

  • SHA256

    e9e8f3acffc062768c8412f23c68bec888a74f4e5239f33e250bb314f531e3a2

  • SHA512

    2ec826638f7874b4a70eec6d519eaa4b6f577212e5c15b3fa68ea7d82d5bfa590ba540844e8d381a84888e8bca63f0a4b1b35374f8710094f599295d42ddf07d

  • SSDEEP

    12288:f/ABIePYHG+6918YN4S4Cq99TmnclL9X1WOYAlWyXT6OWyV8aqy+vLts/oWVroGC:hhdTlh5her/SBkKYWCXAIcLmf

Score
10/10
darkcometrattrojan

Malware Config

Targets

    • Target

      e9e8f3acffc062768c8412f23c68bec888a74f4e5239f33e250bb314f531e3a2

    • Size

      1.1MB

    • MD5

      78dc6b183c2066310450e2bf47e5b506

    • SHA1

      130020dd49410b85c30ead8894d97243e318d2aa

    • SHA256

      e9e8f3acffc062768c8412f23c68bec888a74f4e5239f33e250bb314f531e3a2

    • SHA512

      2ec826638f7874b4a70eec6d519eaa4b6f577212e5c15b3fa68ea7d82d5bfa590ba540844e8d381a84888e8bca63f0a4b1b35374f8710094f599295d42ddf07d

    • SSDEEP

      12288:f/ABIePYHG+6918YN4S4Cq99TmnclL9X1WOYAlWyXT6OWyV8aqy+vLts/oWVroGC:hhdTlh5her/SBkKYWCXAIcLmf

    Score
    10/10
    darkcometrattrojan

    • Darkcomet

      DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.

      trojanratdarkcomet

    • Uses the VBS compiler for execution

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks