8e3a8d6bc6d05389c36bbcb0d54d28495224524443093801f09a31f52070b658 | Triage

Submit
Reports

Overview

overview

Static

static

8e3a8d6bc6...58.exe

windows7-x64

8e3a8d6bc6...58.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

8e3a8d6bc6d05389c36bbcb0d54d28495224524443093801f09a31f52070b658.exe

Resource

win7-20220901-en

darkcomet persistence rat trojan

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

8e3a8d6bc6d05389c36bbcb0d54d28495224524443093801f09a31f52070b658.exe

Resource

win10v2004-20220812-en

darkcomet persistence rat trojan

windows10-2004-x64

10 signatures

150 seconds

General

Target

8e3a8d6bc6d05389c36bbcb0d54d28495224524443093801f09a31f52070b658
Size

270KB
MD5

7120015a68b88f66e341471b830876e7
SHA1

4dbc468b9a83a9e3a361e532803a72af951288d6
SHA256

8e3a8d6bc6d05389c36bbcb0d54d28495224524443093801f09a31f52070b658
SHA512

733cffaf304d93e01c02188486420887b54d5a1a4d90b633b5a470db373ba3b31396f3aa896606b2024ecbb092ce6877f69fdcefd624ea3a9925bb9b5ee83145
SSDEEP

6144:yNCq/RSI4hck3fIVtkNFy7YCewmgFppcmDkAoRYINE/gR6ZP:Pq/crhRfIATy5pcRYe4

Score

N/A

Malware Config

Signatures

Files

8e3a8d6bc6d05389c36bbcb0d54d28495224524443093801f09a31f52070b658
.exe windows x86

843930a4754151485aef69600dca800a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetModuleHandleA
GetProcAddress

oleaut32

SysFreeString

advapi32

RegCloseKey

user32

CharNextA

gdi32

SaveDC

version

VerQueryValueA

ole32

IsEqualGUID

winmm

waveInOpen

wsock32

send

shell32

ShellExecuteA

gdiplus

GdipFree

netapi32

Netbios

urlmon

URLDownloadToFileA

wininet

FtpPutFileA

comctl32

ImageList_Add

shfolder

SHGetFolderPathA

ntdll

NtUnmapViewOfSection
NtQuerySystemInformation

msacm32

acmStreamSize

ws2_32

WSAIoctl

avicap32

capGetDriverDescriptionA

Sections

.MPRESS1
Size: 261KB - Virtual size: 788KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy