General
-
Target
0ee26e7a681c5fe941a5e1c828bc52a408df1e52993c65de2b2e083b2f775b13
-
Size
688KB
-
Sample
221003-tmkfkaebgm
-
MD5
6cdbb491eab99fa8226867ca78d56870
-
SHA1
ae257961401479c9498eaa93c47a4949270c7fb4
-
SHA256
0ee26e7a681c5fe941a5e1c828bc52a408df1e52993c65de2b2e083b2f775b13
-
SHA512
ceb06c41ae7e6ed3d2e13904ea0933e9798ef96b5104c7dddb543a76dad2ec556d3c6fa9ee8bf9c404830b752e41fea62da9e3ce44e1ddbead914e8a007fc49e
-
SSDEEP
12288:mEcbrIMc2YN4sTxKy1xgeNEbqPmdabYSgTxPf/Kmh7Yi+2x:mE00D2YN4gxKy1WeNEIwS0PnMi+o
Static task
static1
Behavioral task
behavioral1
Sample
0ee26e7a681c5fe941a5e1c828bc52a408df1e52993c65de2b2e083b2f775b13.exe
Resource
win7-20220812-en
Malware Config
Extracted
darkcomet
Guest16
127.0.0.1:1604
DC_MUTEX-CBXA5V1
-
gencode
sB3dsQKK9evD
-
install
false
-
offline_keylogger
true
-
persistence
false
Targets
-
-
Target
0ee26e7a681c5fe941a5e1c828bc52a408df1e52993c65de2b2e083b2f775b13
-
Size
688KB
-
MD5
6cdbb491eab99fa8226867ca78d56870
-
SHA1
ae257961401479c9498eaa93c47a4949270c7fb4
-
SHA256
0ee26e7a681c5fe941a5e1c828bc52a408df1e52993c65de2b2e083b2f775b13
-
SHA512
ceb06c41ae7e6ed3d2e13904ea0933e9798ef96b5104c7dddb543a76dad2ec556d3c6fa9ee8bf9c404830b752e41fea62da9e3ce44e1ddbead914e8a007fc49e
-
SSDEEP
12288:mEcbrIMc2YN4sTxKy1xgeNEbqPmdabYSgTxPf/Kmh7Yi+2x:mE00D2YN4gxKy1WeNEIwS0PnMi+o
-
Uses the VBS compiler for execution
-
Suspicious use of SetThreadContext
-