General

  • Target

    a070fc5193cd39c493db4c47b40cea16e8c6158afce68d53e3c6a421dcbb1319

  • Size

    692KB

  • Sample

    221019-1zppdaaefk

  • MD5

    a1d27d8426d4dccf26a07da1c9547790

  • SHA1

    9b88cbc09dfb0051028eb73df8ef2e4620ca655a

  • SHA256

    a070fc5193cd39c493db4c47b40cea16e8c6158afce68d53e3c6a421dcbb1319

  • SHA512

    6f013af210001b8cf80686278060738e5b4bbb8f067b4a11433a920d09a8866dc7b79f6973d6c04b02cef4518a82a18de2d3c8812479375e6f07a055c681c0fe

  • SSDEEP

    12288:b3ASo6WT2sTpIKzacwQmKzXaAsrM+ATpCItcVo7bfGca7:jU6WysdzXlaj6pCItcOHe3

Score
10/10

Malware Config

Targets

    • Target

      a070fc5193cd39c493db4c47b40cea16e8c6158afce68d53e3c6a421dcbb1319

    • Size

      692KB

    • MD5

      a1d27d8426d4dccf26a07da1c9547790

    • SHA1

      9b88cbc09dfb0051028eb73df8ef2e4620ca655a

    • SHA256

      a070fc5193cd39c493db4c47b40cea16e8c6158afce68d53e3c6a421dcbb1319

    • SHA512

      6f013af210001b8cf80686278060738e5b4bbb8f067b4a11433a920d09a8866dc7b79f6973d6c04b02cef4518a82a18de2d3c8812479375e6f07a055c681c0fe

    • SSDEEP

      12288:b3ASo6WT2sTpIKzacwQmKzXaAsrM+ATpCItcVo7bfGca7:jU6WysdzXlaj6pCItcOHe3

    Score
    10/10
    • Darkcomet

      DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.

    • Uses the VBS compiler for execution

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks