General

  • Target

    a1a8ab6332f0fe7aca4250d5454bb3db623debd45151373b9263db436ca42c79

  • Size

    377KB

  • MD5

    6feaab979663244eca21c62008b09202

  • SHA1

    89da90563896e8af51b1613b7848db8af17ae615

  • SHA256

    a1a8ab6332f0fe7aca4250d5454bb3db623debd45151373b9263db436ca42c79

  • SHA512

    c3aebe6cb7a9f2c8a6069953d68a31e2e40ce007ef2a0f3bf94cd2ffb107d46d16ce281a8127d8661e778eeccfab47096839c9053f178815cd142ac3a60b6a4a

  • SSDEEP

    6144:IcNYS996KFifeVjBpeExgVTFSXFoMc5RhCaL37mO4EqXoetQGqvvoB:IcW7KEZlPzCy37mO4iGqvw

Score
10/10

Malware Config

Extracted

Family

darkcomet

Attributes
  • gencode

  • install

    false

  • offline_keylogger

    false

  • persistence

    false

Signatures

  • Darkcomet family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

Files

  • a1a8ab6332f0fe7aca4250d5454bb3db623debd45151373b9263db436ca42c79
    .exe windows x86


    Headers

    Sections

  • out.upx
    .exe windows x86


    Headers

    Sections