General

  • Target

    c9cd1a26aeafcb3fc68ddf8e24c4bd6775049142b7c6c3fa2aef7e01e4b8acd5

  • Size

    658KB

  • MD5

    78b66bb42b7a31e8d1d9516725032260

  • SHA1

    02dbce2ce23bae39939b716698a5b97ed31d5eb9

  • SHA256

    c9cd1a26aeafcb3fc68ddf8e24c4bd6775049142b7c6c3fa2aef7e01e4b8acd5

  • SHA512

    1df527bcf584b87052c77f9ae2743eefbaa366b37919da4a62bd7d6e3356c0b870b956a7400140d309a43f7d663da2d7c15798a251ab68c29820403e31d581f4

  • SSDEEP

    12288:e9HFJ9rJxRX1uVVjoaWSoynxdO1FVBaOiRZTERfIhNkNCCLo9Ek5C/hG:qZ1xuVVjfFoynPaVBUR8f+kN10EBo

Score
10/10

Malware Config

Extracted

Family

darkcomet

Botnet

JONDO1

C2

nsagica.ddns.net:1609

Mutex

DC_MUTEX-3JJ1G3H

Attributes
  • InstallPath

    MSDCSC\msdcsc.exe

  • gencode

    B3XGhNWYqyUL

  • install

    true

  • offline_keylogger

    true

  • persistence

    false

  • reg_key

    JavaUpdater

Signatures

Files

  • c9cd1a26aeafcb3fc68ddf8e24c4bd6775049142b7c6c3fa2aef7e01e4b8acd5
    .exe windows x86

    e5b4359a3773764a372173074ae9b6bd


    Headers

    Imports

    Sections