415b5d1e624da4f05f6aa7355aa6a254ae1d689300884c1af15f01836c3122ed | Triage

Submit
Reports

Overview

overview

Static

static

415b5d1e62...ed.exe

windows7-x64

415b5d1e62...ed.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

415b5d1e624da4f05f6aa7355aa6a254ae1d689300884c1af15f01836c3122ed.exe

Resource

win7-20220812-en

darkcomet rat trojan

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

415b5d1e624da4f05f6aa7355aa6a254ae1d689300884c1af15f01836c3122ed.exe

Resource

win10v2004-20220901-en

darkcomet rat trojan

windows10-2004-x64

6 signatures

150 seconds

General

Target

415b5d1e624da4f05f6aa7355aa6a254ae1d689300884c1af15f01836c3122ed
Size

252KB
MD5

96ce8b159c5f6da4b7cea1f5504535f7
SHA1

45696fe98706542a9d4959488447fb8d06170901
SHA256

415b5d1e624da4f05f6aa7355aa6a254ae1d689300884c1af15f01836c3122ed
SHA512

f3dc76e2d198f7511370aed2e69beac3a1a1240e2ca01e860fc2264e12acb04b5fc20dedef144922ac7972d8f115d8dfc9078388f9c872e253a9ffd79eaf9e45
SSDEEP

3072:33rAsZQCByAxj0v3VGOcZKepLVIfdpxNqaxKZLoZzDu0Ly7Q9+Rjw4bkZbSpsOoc:kVvvFIdhUd8QxW7zRjrbk+sOYSsc

Score

N/A

Malware Config

Signatures

Files

415b5d1e624da4f05f6aa7355aa6a254ae1d689300884c1af15f01836c3122ed
.exe windows x86

53e92d872cf0a74896474c549dcf7fac

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

oleaut32

SysFreeString

advapi32

RegQueryValueExA

user32

GetKeyboardType

gdi32

UnrealizeObject

version

VerQueryValueA

wsock32

WSACleanup

shell32

ShellExecuteExA

ole32

CoTaskMemFree

urlmon

URLDownloadToFileA

comctl32

_TrackMouseEvent

wininet

InternetOpenUrlA

winmm

waveInUnprepareHeader

rasapi32

RasGetEntryDialParamsA

ntdll

NtUnmapViewOfSection
NtQuerySystemInformation

netapi32

Netbios

avicap32

capGetDriverDescriptionA

shfolder

SHGetFolderPathA

gdiplus

GdipGetImageEncoders

ws2_32

WSAIoctl

msacm32

acmStreamUnprepareHeader

pstorec

PStoreCreateInstance

url

InetIsOffline

Sections

.text
Size: 244KB - Virtual size: 764KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy