General

  • Target

    f8a3387213560fbb6558d18f26c63a89c59ad7fbd55de1fe85f1d4d653a58160

  • Size

    252KB

  • Sample

    221014-l2cp9sadb7

  • MD5

    6af7ccec4a0f1dfb0323be07c2108d69

  • SHA1

    a7f708d38a2929a132572feed12f3e97852faa08

  • SHA256

    f8a3387213560fbb6558d18f26c63a89c59ad7fbd55de1fe85f1d4d653a58160

  • SHA512

    bf6b47aa0d3a7697dc343224cb6e28ea20e07777518265184d9cfc864c3080586e6be907157e48f9f995744d8212c092529ca5cb8f076188cef1466649493d61

  • SSDEEP

    6144:6P7o9d/CcwUy39NgYngySfx2QI8nx8qv4GQt4N7LY:m7sCcCL6ySfm8nyGc4pY

Malware Config

Targets

    • Target

      f8a3387213560fbb6558d18f26c63a89c59ad7fbd55de1fe85f1d4d653a58160

    • Size

      252KB

    • MD5

      6af7ccec4a0f1dfb0323be07c2108d69

    • SHA1

      a7f708d38a2929a132572feed12f3e97852faa08

    • SHA256

      f8a3387213560fbb6558d18f26c63a89c59ad7fbd55de1fe85f1d4d653a58160

    • SHA512

      bf6b47aa0d3a7697dc343224cb6e28ea20e07777518265184d9cfc864c3080586e6be907157e48f9f995744d8212c092529ca5cb8f076188cef1466649493d61

    • SSDEEP

      6144:6P7o9d/CcwUy39NgYngySfx2QI8nx8qv4GQt4N7LY:m7sCcCL6ySfm8nyGc4pY

    • Darkcomet

      DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.

    • Windows security bypass

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Windows security modification

MITRE ATT&CK Enterprise v6

Tasks