darkcomet | a421c6dd2f84ec653e22df2c0be39194bb18862169a8c1486ac0cd215aeaef03 | Triage

Sharing

General

Target

a421c6dd2f84ec653e22df2c0be39194bb18862169a8c1486ac0cd215aeaef03
Size

658KB
Sample

221014-l1q69sach9
MD5

7548ff3a1c4c42b6bd2c30d87c5a5bc0
SHA1

232dc2b6e65b6151a4300074a153e82bd130b8df
SHA256

a421c6dd2f84ec653e22df2c0be39194bb18862169a8c1486ac0cd215aeaef03
SHA512

0207ef53a0f10624cc495a6c225ad99046756fa9735951088534e9ba06d9ad8e4dfe52574c690d78952a0bc7210ecd384401b348fdd3b90844433e95741384ba
SSDEEP

12288:i9HFJ9rJxRX1uVVjoaWSoynxdO1FVBaOiRZTERfIhNkNCCLo9Ek5C/hQ:OZ1xuVVjfFoynPaVBUR8f+kN10EBi

Score

10^/10

darkcomet vlc rat trojan

Malware Config

Extracted

Family

darkcomet

Botnet

vlc

C2

commytest.zapto.org:1604

Mutex

DC_MUTEX-BQ46ZBL

Attributes

gencode
bFJPrz4HBNqZ
install
false
offline_keylogger
true
persistence
false

Targets

- Target
  
  a421c6dd2f84ec653e22df2c0be39194bb18862169a8c1486ac0cd215aeaef03
- Size
  
  658KB
- MD5
  
  7548ff3a1c4c42b6bd2c30d87c5a5bc0
- SHA1
  
  232dc2b6e65b6151a4300074a153e82bd130b8df
- SHA256
  
  a421c6dd2f84ec653e22df2c0be39194bb18862169a8c1486ac0cd215aeaef03
- SHA512
  
  0207ef53a0f10624cc495a6c225ad99046756fa9735951088534e9ba06d9ad8e4dfe52574c690d78952a0bc7210ecd384401b348fdd3b90844433e95741384ba
- SSDEEP
  
  12288:i9HFJ9rJxRX1uVVjoaWSoynxdO1FVBaOiRZTERfIhNkNCCLo9Ek5C/hQ:OZ1xuVVjfFoynPaVBUR8f+kN10EBi
Score

10^/10

darkcomet rat trojan
- Darkcomet
  DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.
  trojan rat darkcomet
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

darkcometrattrojan

behavioral2

darkcometrattrojan