darkcomet | c9bb7a4b548ade515f452bbc1d67544ea434c68daca55c1d8c6f989ab5f2a825 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c9bb7a4b548ade515f452bbc1d67544ea434c68daca55c1d8c6f989ab5f2a825
Size

811KB
Sample

221011-k9x6hafhcq
MD5

0509d0971ad9d7ce6b8626828c54adbc
SHA1

d6833f62654dea89390d8a6f1c1502f79db74800
SHA256

c9bb7a4b548ade515f452bbc1d67544ea434c68daca55c1d8c6f989ab5f2a825
SHA512

6bd26e48e773fe73a3b2c1bb51b501cdc8de73cf748a6891a964749552cc3a0012fbbe716178143a61502a9e5a4f568388c2ff9e347467f10d55c6ef1e684064
SSDEEP

12288:+aAchpWsuVTv7ItY8XljyypHP7cOLBev03hlULsmWZ++09ZcKDVsgdlO4V:fAEENIq8XwyVPQclDq/+WnpsSB

Score

10^/10

darkcomet rat trojan

Malware Config

Targets

- Target
  
  c9bb7a4b548ade515f452bbc1d67544ea434c68daca55c1d8c6f989ab5f2a825
- Size
  
  811KB
- MD5
  
  0509d0971ad9d7ce6b8626828c54adbc
- SHA1
  
  d6833f62654dea89390d8a6f1c1502f79db74800
- SHA256
  
  c9bb7a4b548ade515f452bbc1d67544ea434c68daca55c1d8c6f989ab5f2a825
- SHA512
  
  6bd26e48e773fe73a3b2c1bb51b501cdc8de73cf748a6891a964749552cc3a0012fbbe716178143a61502a9e5a4f568388c2ff9e347467f10d55c6ef1e684064
- SSDEEP
  
  12288:+aAchpWsuVTv7ItY8XljyypHP7cOLBev03hlULsmWZ++09ZcKDVsgdlO4V:fAEENIq8XwyVPQclDq/+WnpsSB
Score

10^/10

darkcomet rat trojan
- Darkcomet
  DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.
  trojan rat darkcomet
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

darkcometrattrojan

behavioral2

darkcometrattrojan